Topic: hundreds of snort alerts in log

[boss_hog]

Hey Yall,
this is obviously a question about a contrib and not an SME issue. My ACID manager shows 46 alerts, but (you seen this coming), I have thousands of entries in /var/log/snort. Most of the entries show 0 bytes. I used the RPM's ( both for acid and snort) graciously provided by MasterSleepy.

This will be the third time that this has occurred. The only fix I have found is to un-install the snort contrib and re-install. Bit of a pain, but then the same thing occurs anyway.

Because of all the snort entries, the server manager panel becomes unusually slow when checking the log files.
SME6.5rc1 and same thing on SME6.0x
Any input welcomed.
Joe

[jester]

Recently installed Snort/Acid as well and now got the same problem..... an enormous amount of log files.

Anyone found a solution to this?! Or is it gonna be just de-installing both and removing the logfiles?!


Cheers,
 jester.