[Oisf-users] About the ever-growing stats.log
Brian Keefer
chort at effu.se
Thu Apr 30 17:12:16 UTC 2015
On Apr 28, 2015, at 3:00 PM, James Moe <jimoe at sohnen-moe.com> wrote:
> Signed PGP part
> Hello,
> linux 3.16.7-21-desktop x86_64
> suricata 2.0.7
>
> Suricata appends cumulative statistics to <stats.log> at intervals
> defined in <suricata.yaml>. The default interval value of 8 seconds
> means the file grows quickly.
> What is the reason for such frequent updates?
> Is there a way to prevent the data being appended? I.e., overwrite
> the file every time?
I set mine to append every 60 seconds. I thought I had it in my log rotate script too, but I just checked and it’s not included. It isn’t larger than 5MB on any of my sensors right now (with 12-16 cores each).
--
bk
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20150430/1ebf62d3/attachment.sig>
More information about the Oisf-users
mailing list