Snort mailing list archives
Re: Snort startup
From: Mohamed Eldesoky <eldesoky.lists () gmail com>
Date: Sun, 5 Jun 2005 11:21:20 +0300
Just curious, are you one of the developers of BASE ?? :) On 5/31/05, Briggs, Bruce <Bruce.Briggs () suny edu> wrote:
And, consider using BASE instead of ACID. http://secureideas.sourceforge.net/ Bruce -----Original Message----- From: snort-users-admin () lists sourceforge net [mailto:snort-users-admin () lists sourceforge net] On Behalf Of richard Sent: Tuesday, May 31, 2005 3:29 PM To: Dominik Gehl Cc: snort-users () lists sourceforge net Subject: Re: [Snort-users] Snort startup Hi Dominik, Thanks for that, works a treat :) On Tue, May 31, 2005 at 03:15:22PM -0400, Dominik Gehl wrote:Hi, it should work fine if you set in /etc/sysconfig/snort ALERTMODE= BINARY_LOG=0 Dominik On Tue, 2005-05-31 at 20:05 +0100, richard wrote:Hi, I'm new to snort seem to be doing OK with it but have run into asmall problem. I'm running snort on a fedora core 3 box, logging to local mysql DB and using ACID as well.Everything is working great except when I start snort from the/etc/init.d/snortd script. When I start the service with that script snort stops logging to the db, from what I gather this is because the init script uses -A as an argument. I've set alertmode to 'none' in /etc/sysconfig/snort but still it won't log to db.If I start snort manualy with 'snort -c /etc/snort/snort.config' allworks.Any one know how to sort this out?------------------------------------------------------- This SF.Net email is sponsored by Yahoo. Introducing Yahoo! Search Developer Network - Create apps using Yahoo! Search APIs Find out how you can build Yahoo! directly into your own Applications - visit http://developer.yahoo.net/?fr=offad-ysdn-ostg-q22005 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users ------------------------------------------------------- This SF.Net email is sponsored by Yahoo. Introducing Yahoo! Search Developer Network - Create apps using Yahoo! Search APIs Find out how you can build Yahoo! directly into your own Applications - visit http://developer.yahoo.net/?froffad-ysdn-ostg-q22005 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?listsnort-users
-- Mohamed Eldesoky www.eldesoky.net RHCE ------------------------------------------------------- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61" plasma display: http://www.necitguy.com/?r _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort startup richard (May 31)
- Re: Snort startup Jeff Kell (May 31)
- Re: Snort startup Dominik Gehl (May 31)
- Re: Snort startup richard (May 31)
- <Possible follow-ups>
- RE: Snort startup Briggs, Bruce (May 31)
- Re: Snort startup Mohamed Eldesoky (Jun 05)
- Re: Snort startup Paul Schmehl (Jun 05)
- Re: Snort startup Mohamed Eldesoky (Jun 05)