Snort mailing list archives
Re: Re: Snort compiled w/MySQL?
From: Joerg Weber <j.weber () infos de>
Date: Thu, 14 Oct 2004 09:02:55 +0200
Hi Larry, you might want to use Barnyard to log to a remote SQL Server instead of logging with snort directly. To do so, you'd configure snort to log via unified log format (output log_unified: filename snort.log, limit 128) and configure barnyard to read that file for example via -f snort.log. Barnyard is available at http://www.snort.org/dl/barnyard/ Good luck, Joerg On Wed, 2004-10-13 at 18:13, Larry Wichman wrote:
Thanks for the responses. I copied the client libraries over manually
and recompiled Snort with the path to them. It seems to be working
now.
Larry Wichman <larrywichman () yahoo com> wrote:
I want to have a snort box send alerts to a MySQL database on
another box. Do I still need to compile it usisng
"--with-mysql=/usr/local/mysql"? If so, does this mean that I
have to install MySQL on the Snort box even though it will be
sending alerts to another box?
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
Cheers,
Lawrence A. Wichman
2719 W Thomas
Apt 2
Chicago
Il, 60622
773.807.7606
______________________________________________________________________
Do you Yahoo!?
Yahoo! Mail CNET Editors' Choice 2004. Tell them what you think.
-- Joerg Weber M. A. Network Security infoServe GmbH Nell-Breuning-Allee 6 D-66115 Saarbruecken T: (0681) 8 80 08 - 59 F: (0681) 8 80 08 - 33 www.infos.de E: j.weber () infos de ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort compiled w/MySQL? Larry Wichman (Oct 13)
- Re: Snort compiled w/MySQL? Matt Kettler (Oct 13)
- Re: Snort compiled w/MySQL? Craig Paterson (Oct 13)
- Re: Snort compiled w/MySQL? Jose Maria Lopez (Oct 14)
- <Possible follow-ups>
- Re: Snort compiled w/MySQL? Larry Wichman (Oct 13)
- Re: Re: Snort compiled w/MySQL? Joerg Weber (Oct 14)
- RE: Snort compiled w/MySQL? Botwick, Jason (Genworth, Contractor) (Oct 13)