Snort mailing list archives
snort 2.0.0 rules
From: msmythe () armada cl
Date: Wed, 11 Jun 2003 15:53:24 -0500
Hi, I use redhat 7.3, kernel 2.4.20.18-7 platform,with snort 2.0.0 I´m tryng to run form [msmythe@of51 msmythe] directory, where i have a snort and log directories. The error message says: can not get write access to logging directory "var/log/snort". (directory doesn´t exist or permissions are set incorrectly or it is not a directory as all) Fatal Error, Quitting.. .... i checked it out in /var/log and snort directory doesn´t exist. Should i create it? OK, i´ll use snort instead of ./snort. Another questions please: 1. must i have to use MySQL or ACID?...why? 2. exist another snort 2.0.0 rules file? or i downloaded with the last release of snort 2.0.0.? . How can i use it? Thanks in advance. ----- Original Message ----- From: "Matt Kettler" <mkettler () evi-inc com> To: <msmythe () armada cl>; <snort-users () lists sourceforge net> Sent: Tuesday, June 10, 2003 6:58 PM Subject: Re: [Snort-users] snort 2.0.0 rules At 06:26 PM 6/10/2003 -0500, msmythe () armada cl wrote:
Hi everyone, i´m just known snort and i don´t know how set the rules or if exist rules file for 2.0.0. I install it by the book, but i can´t execute ./snort -d -h xxx.xxx.xxx.xxx./24 -l ./log -c snort.conf command
Define "can't execute".. what exactly happens when you try the above, what exact error message do you get? What platform are you using? What directory are you in when you are trying to do this? Why are you using ./snort instead of snort or /usr/bin/snort or some such thing?. (the use of ./ means to only find snort in the current directory) Is there a direcory named "log" in the directory you are running all this from? ------------------------------------------------------- This SF.NET email is sponsored by: eBay Great deals on office technology -- on eBay now! Click here: http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- snort 2.0.0 rules msmythe (Jun 10)
- Re: snort 2.0.0 rules Matt Kettler (Jun 10)
- snort 2.0.0 rules msmythe (Jun 11)
- Re: snort 2.0.0 rules Matt Kettler (Jun 11)
- snort 2.0.0 rules msmythe (Jun 11)
- Re: snort 2.0.0 rules Matt Kettler (Jun 10)