Snort mailing list archives
Re: Barnyard2 doesn't read alerts
From: beenph <beenph () gmail com>
Date: Thu, 13 Feb 2014 12:54:50 -0500
On Thu, Feb 13, 2014 at 11:36 AM, Daniele Gallarato <daniele.gallarato () email it> wrote: Hi Daniele,
I thought it also. But the folder has the right permissions. And problem remains also running barnyard2 as root...
pre: update barnyard2 (your running 2-1.9 which is a few years old) (www.github.com/firnsy/barnyard2) 1. How did you configure snort unified2 output 2. What is your snort command line. 3. What is your barnyard2 configuration 4. Do you see your unified2 file growing? Waldo file will get updated/generated when the output plugin process an event. If barnyard2 has not processed any event the waldo file will remain empty or non existant if it has not been created previously by event processing . You can allways touch the future waldo file to change the warning you get but as soon as you will process events the warning will go away. -elz ------------------------------------------------------------------------------ Android apps run on BlackBerry 10 Introducing the new BlackBerry 10.2.1 Runtime for Android apps. Now with support for Jelly Bean, Bluetooth, Mapview and more. Get your Android app in front of a whole new audience. Start now. http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Barnyard2 doesn't read alerts Daniele Gallarato (Feb 13)
- Re: Barnyard2 doesn't read alerts Joel Esler (jesler) (Feb 13)
- Re: Barnyard2 doesn't read alerts Daniele Gallarato (Feb 13)
- Re: Barnyard2 doesn't read alerts beenph (Feb 13)
- Re: Barnyard2 doesn't read alerts Daniele Gallarato (Feb 13)
- Re: Barnyard2 doesn't read alerts Joel Esler (jesler) (Feb 13)