Snort mailing list archives
SV: Configuring Barnyard
From: Tomas Sjöström <tomas.t.sjostrom () validation nu>
Date: Tue, 25 Sep 2001 08:09:14 +0200
Hi! I have updated snort to the latest cvs release "Version 1.8.1-current (Build 79)", and barnyard Version 0.1.0. Snort is placed under /etc/snort. Command to start barnyard is: "barnyard -c /etc/snort/barnyard.conf -d /var/log/snort -g /etc/snort/gen-msg.map -s /etc/snort/sid-msg.map -f snort.alert" Taken directly from the USAGE text file. All files referenced above are placed in the correct folder. Snort starts ok, and writes continually to snort log directory, with the pattern " snort.alert.*". The files are in binary format. Now when starting barnyard, the following message is received: <<<<<<<<<<<<<<<snippet>>>>>>>>>>>>>>>>>>>>>>> --== Initializing Barnyard ==-- Loading Data Processors... dp_alert loaded dp_log loaded Loading Output Processors... Fast Alert plugin initialized Log Dump plugin initialized --== Initialization Complete ==-- -*> Barnyard! <*- Version 0.1.0 By Martin Roesch (roesch () sourcefire com, www.snort.org) and Andrew R. Baker (andrewb () uab edu) Startup OpFast file pointer at 0x0x8096c10 Segmentation fault (core dumped) <<<<<<<<<<<<<<<snippet>>>>>>>>>>>>>>>>>>>>>>> Any other suggestions? Thanks, Thomas
-----Ursprungligt meddelande----- Från: cmg () uab edu [mailto:cmg () uab edu] Skickat: den 24 september 2001 17:51 Till: tomas.t.sjostrom () telia se Kopia: snort-users () lists sourceforge net Ämne: Re: [Snort-users] Configuring Barnyard Tomas Sjöström <tomas.t.sjostrom () validation nu> writes:1. (*) text/plain ( ) text/html Hi! I am testing the latest release of snort together w/ barnyard. Snort works fine, but barnyard complains over "no files found toread", andthen exits. Anyone have a solution?Please share your file structure and command line options. You are probably not indicating what directory the files need to be read from -- Chris Green <cmg () uab edu> Don't use a big word where a diminutive one will suffice.
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Configuring Barnyard Tomas Sjöström (Sep 24)
- Re: Configuring Barnyard Chris Green (Sep 24)
- SV: Configuring Barnyard Tomas Sjöström (Sep 24)
- Re: Configuring Barnyard Andrew R. Baker (Sep 24)
- Re: Configuring Barnyard Chris Green (Sep 24)