Snort mailing list archives
snort on freebsd
From: "Ilya" <mail () krel org>
Date: Sat, 15 Sep 2001 16:41:10 -0400
I just installed snort on freebsd and it looks like it doesnt look at config file at all. When i start snort I get this: root@alchemistry$ snort -a -d -i ed0 -I -l /var/log/snort/ -v -A full Log directory = /var/log/snort/ --== Initializing Snort ==-- Checking PID path... PATH_VARRUN is set to /var/run/ on this operating system Initializing Network Interface ed0 Decoding Ethernet on interface ed0 --== Initialization Complete ==-- -*> Snort! <*- Version 1.8.1-RELEASE (Build 74) and it starts to log stuff, but doesnt react to any kind of scan or atack. my snort.conf is in usual for freebsd place - /usr/local/etc/snort.conf I have this enabled : output alert_unified: /var/log/snort/snort.alert output log_unified: /var/log/snort/snort.log and I have bunch of these: include /usr/local/share/snort/scan.rules in the file. Does snort look for config file somewhere else? or did i miss something ? thanks guys _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- snort on freebsd Ilya (Sep 15)
- Re: snort on freebsd Erek Adams (Sep 15)
- Message not available
- snort logs Ilya (Sep 16)