Snort mailing list archives

Previous By Date Next
Previous By Thread Next

snort on freebsd

From: "Ilya" <mail () krel org>
Date: Sat, 15 Sep 2001 16:41:10 -0400
I just installed snort on freebsd and it looks like it doesnt look at config
file at all.
When i start snort I get this:
root@alchemistry$ snort -a -d -i ed0 -I -l /var/log/snort/ -v -A full
Log directory = /var/log/snort/

        --== Initializing Snort ==--
Checking PID path...
PATH_VARRUN is set to /var/run/ on this operating system

Initializing Network Interface ed0
Decoding Ethernet on interface ed0

        --== Initialization Complete ==--

-*> Snort! <*-
Version 1.8.1-RELEASE (Build 74)

and it starts to log stuff, but doesnt react to any kind of scan or atack.
my snort.conf is in usual for freebsd place - /usr/local/etc/snort.conf
I have this enabled :
output alert_unified: /var/log/snort/snort.alert
output log_unified: /var/log/snort/snort.log
and I have bunch of these: include /usr/local/share/snort/scan.rules in the
file.
Does snort look for config file somewhere else? or did i miss something ?

thanks guys


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: