Re: [Snort-users] Acid shows sensors as 0

This is a discussion on Re: [Snort-users] Acid shows sensors as 0 within the Snort forums, part of the System Security and Security Related category; >I run a GFI scan against snort machine from another computer and still > ACID shows nothing on its ...


Go Back   Usenet Forums > System Security and Security Related > Snort

Reload this Page Re: [Snort-users] Acid shows sensors as 0

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 11-25-2004
Senthil Prabu.S
 
Posts: n/a
Default Re: [Snort-users] Acid shows sensors as 0

>I run a GFI scan against snort machine from another computer and still
> ACID shows nothing on its interface (it keeps showing Sensors 0).
>
> I have only one network card installed in my Fedora machine which
> enters in promiscuous mode (I can tell from the system logs) when
> snort starts.
>
> As I said before, MySql i running, snort connects to it, Snort is
> running ( I followed all the instruction of this guide
> http://www.snort.org/docs/Snort_SSL_FC2.pdf for fedora c2)
>
> Everything seems ok to me except the fact that there is no data showing on
> ACID.
>
> What is going on ?
>
> Please helppppppppppppppppppp.
>

Hi,
[a]. Are you sure snort is creating alerts and log messages?
Once you stop snort running on foreground,u will see a drop-down menu
listing snort activites,there you can find the count of alerts and logs
generated
by snort.Or checkout at log directory for latest alerts and logs

[b]. Do u have the following line in your snort configuration file

"output database: log, mysql, user=root password=test dbname=db
host=localhost".
If yes,get into ur mysql database,execute following commands,

mysql> use snort;
Database changed
mysql> select * from event;
..
..
8348 rows in set (0.46 sec)

you will find a list of events from snort.This confirms that Snort have
logged datas to
database.
If everything works well then I bet you ACID will bring them into your
browser.


--
Senthil Prabu.S

Logic is a systematic method of coming to the wrong conclusion with
confidence.
__________________________________________________ _______________





-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://productguide.itmanagersjournal.com/
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/...fo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.p...st=snort-users
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 02:09 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0