From: Stefan Schantl <stefan.schantl@ipfire.org>
Date: Fri, 15 Feb 2019 10:22:14 +0000 (+0100)
Subject: logrotate: Rotate suricata logs instead of snort ones
X-Git-Tag: v2.23-core131~117^2~39
X-Git-Url: http://git.ipfire.org/?p=ipfire-2.x.git;a=commitdiff_plain;h=1ef235f08dab44779d3b97854f25e234b6124cab

logrotate: Rotate suricata logs instead of snort ones

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
---

diff --git a/config/etc/logrotate.conf b/config/etc/logrotate.conf
index d38570de55..f15ee92c37 100644
--- a/config/etc/logrotate.conf
+++ b/config/etc/logrotate.conf
@@ -28,16 +28,16 @@ include /etc/logrotate.d
     endscript
 }
 
-/var/log/snort/alert  {
+/var/log/suricata/*.log {
     weekly
     copytruncate
     compress
     ifempty
     missingok
     postrotate
-	/bin/find /var/log/snort -path '/var/log/snort/[0-9]*' -prune -exec /bin/rm -rf {} \;
-	/bin/find /var/log/snort -name 'snort.log.*' -mtime +28 -exec /bin/rm -rf {} \;
-	/etc/init.d/snort restart
+	/bin/find /var/log/suricata -path '/var/log/suricata/[0-9]*' -prune -exec /bin/rm -rf {} \;
+	/bin/find /var/log/suricata -name 'fast.log.*' -mtime +28 -exec /bin/rm -rf {} \;
+	/bin/kill -HUP `cat /var/run/suricata.pid 2> /dev/null` 2> /dev/null || true
     endscript
 }