RE: SnortCenter can't push to senso

["Schroeder, Eric" <Eric.Schroeder () westgroup com>]

I get the same error with 0.9.6/0.1.6 on Snort 1.9.0 on RH 7.2 w/o SSL.  I
get the same issue when "previewing".  I'm a little bummed out, the tool
looks awesome.

-Eric

-----Original Message-----
From: larc [mailto:larc () pandora be]
Sent: Monday, November 25, 2002 5:29 AM
To: Guy Marcenac; snort-users () lists sourceforge net
Subject: Re: [Snort-users] SnortCenter can't push to senso


Hi,

> I installed SnortCenter 0.9.4 in order to simplify rules management.
Well version 0.9.4 is about 5 months old and is not compatible with the
agent v0.1.6. Just download Snortcenter 0.9.6 and try again.
http://users.pandora.be/larc/download/

Stefan D.

------------------------
 "Guy Marcenac" <guymarc () ifrance com> wrote:
------------------------
Hello,
> I run snort 1.9.0 with acid v0.9.6b22 on redhat linux 7.3.
> with mysql 3-23-53
> Works fine on my ppp0 DSL connection.
>
> I installed SnortCenter 0.9.4 in order to simplify rules management.
> created snortcenter db, set up parameter in config.php, activated mysql
> plugin, dowloaded rules, ..
> The snort agent is 0.1.6 and is running.
> While setting rules set, variables,... everything seems normal (usual from
> snort user point of view)
> Problem comes when I try to "push" the configuration:
> I get a loading screen for more than a while !
> and nothing happens.
> If I nevertheless start the snort daemon, sometimes, it can work, but I'm
> not sure of the ruleset it is using.
>
> All my "admin server", where snortcenter is installed, runs a https
> connection protected by an apache pwd.
>
> sensor config:
> localhost:2525
> admin/pwd
> ssl no
> interface ppp0
>
>
> miniserv.conf:
> port=2525
> bind=
> root=/opt/snortagent/sensor/cgi
> host=localhost
> addtype_cgi=internal/cgi
> realm=SnortCenter Sensor
> logfile=/var/log/snort/miniserv.log
> pidfile=/var/log/snort/miniserv.pid
> errorlog=/var/log/snort/miniserv.error
> logtime=168
> ssl=0
> env_SENSOR_CONFIG=/etc/snort
> env_SENSOR_VAR=/var/log/snort
> atboot=0
> logout=/etc/snort/logout-flag
> denyfile=\.pl$
> log=1
> blockhost_failures=5
> blockhost_time=60
> passdelay=1
> syslog=1
> allow=localhost
> session=0
> userfile=/etc/snort/sensor.users
> keyfile=/etc/snort/sensor.pem
>
> --
> guy
>
>
>
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users




-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


-------------------------------------------------------
This SF.net email is sponsored by: Get the new Palm Tungsten T 
handheld. Power & Color in a compact size! 
http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users