Database logging

[gerhard () wtci net]

Hi Guys,

I'm trying to log to MySQL or Postgresql, but have no joy.
This is my Setup :
OS= Red Hat 7.1
Have MySQL + Postgresql working , did a recompile and it detected bothe the
databases.
I can run SQL quaries on all my tqbles, and have no errors in any logs.
I modified the snort.conf to log to database (tried with either at atime)
Get this  error :

snort.conf 
######################
ruletype redalert
{
   type alert
   output alert_syslog: LOG_AUTH LOG_ALERT
   output database: log, postgresql, user=snort dbname=snort host=localhost
password=abc
 }
include exploit.rules
include scan.rules
include finger.rules
include ftp.rules
include telnet.rules
include smtp.rules
include rpc.rules
include rservices.rules
include backdoor.rules
include dos.rules

###############################
[root@drsensor snort]# snort -Afull -c snort.conf

        --== Initializing Snort ==--

Initializing Network Interface eth0
Kernel filter, protocol ALL, TURBO mode (63 frames), raw packet socket
Decoding Ethernet on interface eth0
Initializing Preprocessors!
Initializing Plug-ins!
Initializating Output Plugins!

+++++++++++++++++++++++++++++++++++++++++++++++++++
Initializing rule chains...
WARNING: command line overrides rules file alert plugin!
WARNING: command line overrides rules file alert plugin!
634 Snort rules read...
634 Option Chains linked into 117 Chain Headers
0 Dynamic rules
+++++++++++++++++++++++++++++++++++++++++++++++++++
 
Rule application order: ->activation->dynamic->alert->log->pass->redalert
 
        --== Initialization Complete ==--
 
-*> Snort! <*-
Version 1.7
By Martin Roesch (roesch () clark net, www.snort.org)
 


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users