Snort mailing list archives

Previous By Date Next
Previous By Thread Next

snort not logging on signature table

From: Pedro Marinho <pppmarinho () gmail com>
Date: Sat, 3 Oct 2009 19:53:44 -0300
I did install snort at Fedora core 10 and configure snort to insert alerts
at mysql database the tables show the alerts (iphdr, tcphdr,icmphdr,data)
except the signature table it still empty.. do you know why snort is not
inserting the sig_name and other stuff at the table signature?

version of snort is snort-mysql-2.8.4-1.FC7.i386.rpm

mysql> select * from icmphdr;
+-----+-----+-----------+-----------+-----------+---------+----------+
| sid | cid | icmp_type | icmp_code | icmp_csum | icmp_id | icmp_seq |
+-----+-----+-----------+-----------+-----------+---------+----------+
|   1 |   2 |         8 |         0 |     15752 |    4954 |        1 |
|   1 |   3 |         8 |         0 |     15752 |    4954 |        1 |
|   1 |   4 |         8 |         0 |     15752 |    4954 |        1 |
|   1 |   5 |         0 |         0 |     17800 |    4954 |        1 |

mysql> select * from signature;
Empty set (0.00 sec)

------------------------------------------------------------------------------
Come build with us! The BlackBerry&reg; Developer Conference in SF, CA
is the only developer event you need to attend this year. Jumpstart your
developing skills, take BlackBerry mobile applications to market and stay 
ahead of the curve. Join us from November 9&#45;12, 2009. Register now&#33;
http://p.sf.net/sfu/devconf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: