Snort mailing list archives
Running Snort Daemon Problem
From: "Bill" <wkuhn () adelphia net>
Date: Tue, 29 Jan 2002 11:00:34 -0800
Hello, I am trying to get Snort 1.7 installed on a Linux Server... I installed the snort rpm and the tarball... I had to do that because the RPM doesn't have the ability to log to postgresql database... I try to start the snortd daemon and it gives me an error: snortd: /etc/snort/snort.conf: Permission Denied Here is the Start Section of the snortd (located in /etc/rc.d/init.d): start) echo -n "Starting snort: " daemon /usr/local/bin/snort -u snort -dev -D \ -i $INTERFACE -l /var/log/snort -u snort -g snort -c /etc/snort/snort.conf -b touch /var/lock/subsys/snort echo ;; The Snort binary is owned by root and the group is snort (was root but same error). The /etc/snort directory is owned by root and group of root, the permissions are 755 (rwxr_xr_x). The files in the /etc/snort directory are owned by root and the group is snort (this includes snort.conf) The snort.conf is in mode 640.... I checked the /var/log/snort permissions: the snort directory is snort.snort (owner.group) all files inside are snort.snort. Some things I tried were: chmoding the content of /etc/snort to 777 but I get errors of none of the commands in the snort.conf can be found.... /etc/snort/snort.conf: var: command not found [ OK ] /etc/snort/snort.conf: var: command not found /etc/snort/snort.conf: var: command not found /etc/snort/snort.conf: preprocessor: command not found /etc/snort/snort.conf: preprocessor: command not found I would try running it from a command prompt: /usr/local/bin/snort -u snort -dev -D -i eth0 -l /var/log/snort -u snort -g snort -c /etc/snort/snort.conf -b It says it started but running "ps aux / grep snort" shows nothing.... I am at a loss for this one... Any ideas???? _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Running Snort Daemon Problem Bill (Jan 29)
- Re: Running Snort Daemon Problem Chris Green (Jan 29)
- <Possible follow-ups>
- RE: Re: Running Snort Daemon Problem Bill (Jan 30)
- Re: Running Snort Daemon Problem Chris Green (Jan 30)
- Re: Running Snort Daemon Problem Martin Roesch (Jan 31)
- Cisco IDS blade in Catalys switch Jerry A. Shenk (Jan 30)
- Re: Cisco IDS blade in Catalys switch Ryan Russell (Jan 30)
- RE: Cisco IDS blade in Catalyst switch Jerry A. Shenk (Jan 30)
- SV: Cisco IDS blade in Catalys switch Arne Opdal (Jan 30)
- Re: Cisco IDS blade in Catalys switch Jason Costomiris (Jan 30)
- Re: Running Snort Daemon Problem Chris Green (Jan 30)