Snort mailing list archives
Re: Snort configuration
From: "AJ Butcher, Information Systems and Computing" <Alex.Butcher () bristol ac uk>
Date: Thu, 01 Jul 2004 16:18:25 +0100
--On 01 July 2004 10:48 -0300 Eduardo Sampaio <eduardo () digiweb com br> wrote:
Ok i am looking de docs but i need be more especific...
I'm looking for:
- My Snort it's working, all the others programs either, but when i start
" snort -vde -c /usr/local/snort/etc/snort.conf ", the snort start but
he don't refresh the information on my ACID website... i create a
/var/log/snort dir, and have a file called alert, but is empty... how can
i solve this?
You need to configure the 'database' output plugin in snort.conf (or the 'unified' output plugin if you're using barnyard or mudpit).
Best Regards, Alex. -- Alex Butcher: Security & Integrity, Personal Computer Systems Group Information Systems and Computing GPG Key ID: F9B27DC9 GPG Fingerprint: D62A DD83 A0B8 D174 49C4 2849 832D 6C72 F9B2 7DC9 ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training.Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort configuration Eduardo Sampaio (Jul 01)
- Re: Snort configuration sekure (Jul 01)
- Re: Snort configuration Keith W. McCammon (Jul 01)
- Re: Snort configuration Eduardo Sampaio (Jul 01)
- Re: Snort configuration AJ Butcher, Information Systems and Computing (Jul 01)
- Re: Snort configuration Eduardo Sampaio (Jul 01)
- <Possible follow-ups>
- RE: Snort configuration Murray, Todd (Jul 01)