RE: [Snort-users] Acid not loggin
This is a discussion on RE: [Snort-users] Acid not loggin within the Snort forums, part of the System Security and Security Related category; This is a multi-part message in MIME format. ------_=_NextPart_001_01C454B6.6CBED9D0 Content-Type: text/plain; charset="iso-8859-...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
06-17-2004
|
|||
|
|||
RE: [Snort-users] Acid not loggin
This is a multi-part message in MIME format.
------_=_NextPart_001_01C454B6.6CBED9D0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Download phpmyadmin and log into your mysql server. Pull up the snort = DB or whatever the DB is called and verify that data is being stored. = Next check to make sure that Acid is actually connecting to the Mysql = Database by checking the config file. Acid will report if it can or = cannot connect to the db on its main page. =20 Kim Sassaman=20 CISSP - CCNP=20 "Research is what I'm doing when I don't know what I'm doing." - Wernher = Von Braun (1912-1977)=20 -----Original Message----- From: snort-users-admin@lists.sourceforge.net = [mailto:snort-users-admin@lists.sourceforge.net]On Behalf Of Laura Sent: Thursday, June 17, 2004 12:57 PM To: snort-users@lists.sourceforge.net Subject: [Snort-users] Acid not loggin I have sort configured to logg in a mysql database and i'm reading that = with ACID. =20 Last week everthing was working fine, until today when i turned the = server back on and I don't get any information with ACID. =20 Ive tried=20 =20 snort -v and i can see traffic =20 snort -c /etc/snort/snort.conf -i eht0 =20 =20 everything seems to work fine ... what can be wrong? =20 Thanks=20 =20 Laura =20 ------_=_NextPart_001_01C454B6.6CBED9D0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1400" name=3DGENERATOR></HEAD> <BODY> <DIV><SPAN class=3D277495821-17062004><FONT face=3DArial color=3D#0000ff = size=3D2>Download phpmyadmin and log into your mysql server. Pull = up the=20 snort DB or whatever the DB is called and verify that data is being=20 stored. Next check to make sure that Acid is actually connecting = to the=20 Mysql Database by checking the config file. Acid will report if it = can or=20 cannot connect to the db on its main page.</FONT></SPAN></DIV> <DIV><FONT face=3DArial color=3D#0000ff size=3D2></FONT> </DIV> <P><FONT face=3DTahoma>Kim Sassaman </FONT><BR><FONT face=3DTahoma>CISSP = -=20 CCNP</FONT> <BR><FONT face=3D"Times New Roman">"Research is what I'm = doing when I=20 don't know what I'm doing." - Wernher Von Braun (1912-1977) = </FONT></P><BR> <BLOCKQUOTE dir=3Dltr style=3D"MARGIN-RIGHT: 0px"> <DIV class=3DOutlookMessageHeader dir=3Dltr align=3Dleft><FONT = face=3DTahoma=20 size=3D2>-----Original Message-----<BR><B>From:</B>=20 snort-users-admin@lists.sourceforge.net=20 [mailto:snort-users-admin@lists.sourceforge.net]<B>On Behalf Of=20 </B>Laura<BR><B>Sent:</B> Thursday, June 17, 2004 12:57 = PM<BR><B>To:</B>=20 snort-users@lists.sourceforge.net<BR><B>Subject:</B> [Snort-users] = Acid not=20 loggin<BR><BR></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D072045319-17062004>I = have sort=20 configured to logg in a mysql database and i'm reading that with=20 ACID.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D072045319-17062004>Last = week=20 everthing was working fine, until today when i turned the server back = on and I=20 don't get any information with ACID.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D072045319-17062004>Ive = tried=20 </SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D072045319-17062004>snort=20 -v and i can see traffic</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D072045319-17062004>snort -c=20 /etc/snort/snort.conf -i eht0</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D072045319-17062004>everything seems=20 to work fine ... what can be wrong?</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D072045319-17062004>Thanks=20 </SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D072045319-17062004>Laura</SPAN></FONT></DIV> <DIV><SPAN = class=3D072045319-17062004>   ;=20 </SPAN></DIV></BLOCKQUOTE></BODY></HTML> ------_=_NextPart_001_01C454B6.6CBED9D0-- ------------------------------------------------------- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
