Snort mailing list archives
Re: Snort/Barnyard Error
From: "Richard Lichvar" <rlichvar () sainc com>
Date: Fri, 21 Aug 2009 12:11:31 -0400
Can 2 be installed via yum? From: Jefferson, Shawn [mailto:Shawn.Jefferson () bcferries com] Sent: Friday, August 21, 2009 11:58 AM To: Richard Lichvar; Joel Esler Cc: snort-users () lists sourceforge net Subject: RE: [Snort-users] Snort/Barnyard Error Richard, You can determine your version of barnyard by typing: barnyard -V If you get back 0.1.0 or 0.2.0, you are running barnyard, not barnyard2. Barnyard2 is at: http://www.securixlive.com/barnyard2/index.php ________________________________ From: Richard Lichvar [mailto:rlichvar () sainc com] Sent: Friday, August 21, 2009 7:30 AM To: Joel Esler Cc: snort-users () lists sourceforge net Subject: Re: [Snort-users] Snort/Barnyard Error Joel, I can tell you that the date on the barnyard and snort executables seems to be March, 2008. Whether that tells you the version or not, I don't know. From: Richard Lichvar [mailto:rlichvar () sainc com] Sent: Friday, August 21, 2009 10:21 AM To: Joel Esler Cc: snort-users () lists sourceforge net Subject: Re: [Snort-users] Snort/Barnyard Error Pardon my ignorance, but to tell you the truth, I don't know. This thing just got dumped in my lap after our security guy left and he didn't leave any documentation as to what version of what is installed. That said, how can I tell what version? The messages only say "barnyard." Also, I'm still fairly new to 'nix so I'm not too sure how to answer those kinds of questions. (We don't use any kind of 'nix GUI.) From: Joel Esler [mailto:jesler () sourcefire com] Sent: Friday, August 21, 2009 10:04 AM To: Richard Lichvar Cc: snort-users () lists sourceforge net Subject: Re: [Snort-users] Snort/Barnyard Error Clarification, are you using barnyard, or barnyard2? If the former, please use the latter. J On Fri, Aug 21, 2009 at 9:32 AM, Richard Lichvar <rlichvar () sainc com> wrote: First of all, I'm not sure the original post came through correctly so I'm reposting. (Think I let outlook autofill and got the -request address. My apologies.) Second, I'm a newbie to Snort not having worked with it in several years (and then just dabbling in it) so I'm just coming up to speed. Also, since this has to do with barnyard, I'm not sure this is the correct forum in which to post this. Now, to the problem: Our Snort/IDS/syslogs (we use Splunk to collect/view) are getting filled-up with a barnyard 2629 warning "unable to extract timestampe file extension from 'snort.log.nnnnnn.' How we can fix this? Many thanks in advance for your help! RichLich ------------------------------------------------------------------------ ------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users <https://lists.sourceforge.net/lists/listinfo/snort-users%0d%0aSnort-use rs> list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users -- Joel Esler | Sourcefire | Google Voice: 302-223-5974 # " This e-mail and any attached documents may contain confidential or proprietary information. If you are not the intended recipient, please advise the sender immediately and delete this e-mail and all attached documents from your computer system. Any unauthorised disclosure, distribution or copying hereof is prohibited." " Ce courriel et les documents qui y sont attaches peuvent contenir des informations confidentielles. Si vous n'etes pas le destinataire escompte, merci d'en informer l'expediteur immediatement et de detruire ce courriel ainsi que tous les documents attaches de votre systeme informatique. Toute divulgation, distribution ou copie du present courriel et des documents attaches sans autorisation prealable de son emetteur est interdite." #
------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort/Barnyard Error Richard Lichvar (Aug 21)
- Re: Snort/Barnyard Error Joel Esler (Aug 21)
- Re: Snort/Barnyard Error Richard Lichvar (Aug 21)
- Re: Snort/Barnyard Error Richard Lichvar (Aug 21)
- Re: Snort/Barnyard Error Jefferson, Shawn (Aug 21)
- Re: Snort/Barnyard Error Richard Lichvar (Aug 21)
- Re: Snort/Barnyard Error Joel Esler (Aug 21)
- Re: Snort/Barnyard Error Richard Lichvar (Aug 21)
- Re: Snort/Barnyard Error Joel Esler (Aug 21)