Snort mailing list archives
(no subject)
From: jcosta () lendleaserei com
Date: Thu, 27 Feb 2003 17:32:54 -0500
Using snort-1.9.0 and the rules it ships with placed into /etc/snort
directory (customized snort.conf files located there also).
I'm trying to get snort to push its alerts into syslog with the following
command line: snort -A fast -s -c /etc/snort/snort.conf
When I issue this command (which seems syntactically correct), I get the
following error:
Initializing Output Plugins!
Log directory = /var/log/snort
Initializing Network Interface eth1
ERROR: OpenPcap() FSM compilation failed:
parse error
PCAP command: /etc/snort/snort.conf
Fatal Error, Quitting..
I realize that some of the command line args for snort are passed onto
libpcap which in this case
is complaining about a parse error. The error looks like its choking on
the argument pointing my snort.conf file.
What am I doing wrong here?
Jeff
Current thread:
- (no subject), (continued)
- (no subject) Jim Schwin (Jan 09)
- Re: (no subject) Erek Adams (Jan 09)
- (no subject) Michael Weiser (Jan 18)
- (no subject) Luiz Alberto Cataldo Jr (Jan 30)
- (no subject) Carmit Partoush (Feb 11)
- (no subject) Carmit Partoush (Feb 13)
- Re: (no subject) Erek Adams (Feb 13)
- (no subject) abhi naik (Feb 14)
- Re: (no subject) Charles Darwin (Feb 16)
- RE: (no subject) Michael Steele (Feb 16)
- (no subject) jcosta (Feb 27)
- Re: (no subject) Erek Adams (Feb 27)
- Re: (no subject) Erick Mechler (Feb 27)
- (no subject) Comcast (Mar 02)
- Re: (no subject) Erek Adams (Mar 03)
- (no subject) Motif (Mar 07)
- (no subject) ryan stangl (Mar 17)
- Re: (no subject) Alberto Gonzalez (Mar 18)
- (no subject) aalbert (Mar 25)
- (no subject) Ken Bell (Mar 27)
- Adobe's Ducky Adam Shephard (Mar 27)
- (no subject) Jim Schwin (Jan 09)