[Oisf-users] Rotated log files created, but logs go to rotated files
Jeremy MJ
jskier at gmail.com
Tue Jun 23 13:20:03 UTC 2015
Hi,
I'm testing the wiki recommendation below for log rotation, with added
dateext and dateformat (no compression):
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Log_Rotation
This may be a file system or logrotate issue, but I noticed that after
rotating last night at midnight, the new files were created and zero
length, and suricata was writing to the rotated log file.
I'm going to try the nocreate option to see if that makes a
difference. Thought I'd throw this out there if anyone else is having
the issue. Running recent git pull of 2.1beta4 and all event types
have their own json output file.
--
Jeremy MJ
More information about the Oisf-users
mailing list