[Bro] Bro problem - no software.log written
kebutler at gmail.com
Wed Aug 28 10:09:27 PDT 2013
Are you running against a pcap or sniffing an interface?
If sniffing an interface, as a first step check that the software scripts are being loaded:
$ zgrep software loaded_scripts.16\:59\:36-17\:00\:00.log.gz
If running against a pcap, add local to the end of your command:
$ bro -r my.pcap local
On Aug 28, 2013, at 9:36 AM, עומר עומר <omer007security at walla.co.il> wrote:
> How can I debug why no software log is written..?
> I use Bro 2.1 compiled from source.
> Walla! Mail - Get your free unlimited mail today
> Bro mailing list
> bro at bro-ids.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro