diff --git a/README.md b/README.md
index 7fa1ed0..4c4725b 100644
--- a/README.md
+++ b/README.md
@@ -93,7 +93,7 @@ outputs:
   - type: unix_socket
     enabled: true
     params:
-      socket_path: /var/run/ja4sentinel.sock
+      socket_path: /var/run/logcorrelator/network.sock
 ```
 
 ### Variables d'environnement
@@ -230,7 +230,7 @@ outputs:
   - type: unix_socket
     enabled: true
     params:
-      socket_path: /var/run/ja4sentinel.sock
+      socket_path: /var/run/logcorrelator/network.sock
 ```
 
 ### Logging fichier + stdout
diff --git a/architecture.yml b/architecture.yml
index f230f4d..67e125f 100644
--- a/architecture.yml
+++ b/architecture.yml
@@ -307,7 +307,7 @@ api:
       module: "output"
       implements: "output.Writer"
       config:
-        - { name: socket_path, type: "string", description: "Chemin de la socket UNIX (ex: /var/run/ja4sentinel.sock)." }
+        - { name: socket_path, type: "string", description: "Chemin de la socket UNIX (ex: /var/run/logcorrelator/network.sock)." }
 
     - name: "output.MultiWriter"
       description: "Combinaison de plusieurs Writer configurés."
@@ -632,7 +632,7 @@ packaging:
         mode: "0750"
       - path: /var/log/ja4sentinel
         mode: "0750"
-      - path: /var/run/ja4sentinel
+      - path: /var/run/logcorrelator
         mode: "0750"
       - path: /etc/ja4sentinel
         mode: "0750"
diff --git a/config.yml.example b/config.yml.example
index 2de3198..385a5b3 100644
--- a/config.yml.example
+++ b/config.yml.example
@@ -35,4 +35,4 @@ outputs:
   # - type: unix_socket
   #   enabled: false
   #   params:
-  #     socket_path: /var/run/ja4sentinel.sock
+  #     socket_path: /var/run/logcorrelator/network.sock
diff --git a/packaging/rpm/ja4sentinel.spec b/packaging/rpm/ja4sentinel.spec
index 920f67b..9106a08 100644
--- a/packaging/rpm/ja4sentinel.spec
+++ b/packaging/rpm/ja4sentinel.spec
@@ -46,7 +46,7 @@ mkdir -p %{buildroot}/usr/bin
 mkdir -p %{buildroot}/etc/ja4sentinel
 mkdir -p %{buildroot}/var/lib/ja4sentinel
 mkdir -p %{buildroot}/var/log/ja4sentinel
-mkdir -p %{buildroot}/var/run/ja4sentinel
+mkdir -p %{buildroot}/var/run/logcorrelator
 mkdir -p %{buildroot}/usr/lib/systemd/system
 mkdir -p %{buildroot}/usr/share/ja4sentinel
 
@@ -67,7 +67,7 @@ exit 0
 %post
 # Set proper ownership (root:root for packet capture)
 chown -R root:root /var/lib/ja4sentinel 2>/dev/null || true
-chown -R root:root /var/run/ja4sentinel 2>/dev/null || true
+chown -R root:root /var/run/logcorrelator 2>/dev/null || true
 chown -R root:root /var/log/ja4sentinel 2>/dev/null || true
 chown -R root:root /etc/ja4sentinel 2>/dev/null || true
 
@@ -114,7 +114,7 @@ fi
 %dir /etc/ja4sentinel
 %dir /var/lib/ja4sentinel
 %dir /var/log/ja4sentinel
-%dir /var/run/ja4sentinel
+%dir /var/run/logcorrelator
 
 %changelog
 * Sat Feb 28 2026 Jacquin Antoine <rpm@arkel.fr> - 1.0.4-1