Re: [Snort-users] Information Not Appearing On ACID Console
This is a discussion on Re: [Snort-users] Information Not Appearing On ACID Console within the Snort forums, part of the System Security and Security Related category; --=-YTRX4nwZuWXXTiOap3OF Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hello, I don't use webmin myself, so i can'...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
10-08-2003
|
|||
|
|||
Re: [Snort-users] Information Not Appearing On ACID Console
--=-YTRX4nwZuWXXTiOap3OF Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hello, I don't use webmin myself, so i can't help you on this one. About alerts not appearing on ACID, be sure that your /etc/snort/snort.conf is well configured to output alerts to mysql database instead of flat files... you should have something like this in your snort.conf, on step #3: Configure output plugins: output database: log, mysql, user=3D<mysql_user> password=3D<mysql_passwd> dbname=3D<mysql_database> host=3D<mysql_host> sensor_name=3D<sensor_name> then restart your snortd deamon: /etc/init.d/snortd restart or=20 /usr/local/bin/snort -i eth0 -D -c /etc/snort/snort.conf hope this help /valter On Wed, 2003-10-08 at 14:19, Kaplan, Andrew H. wrote: > The information does scroll across the screen. However, the network infor= mation > and alerts are nor appearing on ACID. They are being logged to an alert f= ile > located in the /var/log/snort directory.=20 >=20 > In short -- I can start snort only from the command line, and the ACID co= nsole > is not displaying anything.[/b]=20 --=20 ---..---..---..---..---..---..---..---..---..---..---..---..---- Valter Santos keys @ http://devfusion.net/~vsantola/ E2A4B206 @ 99FA 3D80 4B54 BA70 7DD7 C751 47BA 49BC E2A4 B206 --------------------------------------------------------------- --=-YTRX4nwZuWXXTiOap3OF Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQA/hB/6R7pJvOKksgYRAlNnAJwJ50yO9sVVWcSDtAplORZMWC3ElQCgo fVc nFeVzNIxAXx7rveY42WArfQ= =lURW -----END PGP SIGNATURE----- --=-YTRX4nwZuWXXTiOap3OF-- ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
