Snort mailing list archives
Re: snort not running with mysql
From: Rob Dixon <rob.l.dixon () gmail com>
Date: Wed, 21 Oct 2009 11:02:06 -0400
IMO, you want to use unified logging with Barnyard and not have snort logging directly to mysql. instead let barnyard handle it. I got the same error the other night when i was playing with the ubuntu 9 snort guide on the snort.org site. I ignored it and moved on to the barnyard setup and had no problems. Just comment out the mysql output statement in the snort.conf and use the unified logging. youmay have to change "limit = 128" to "limit 128" removing the "=" sign. It gave me an error until i did that. good luck. Rob On Wed, Oct 21, 2009 at 4:37 AM, Adam Szabo <adamx001 () gmail com> wrote:
Hi, I configured snort with mysql based on this tutorial: http://www.howtoforge.com/intrusion-detection-with-snort-mysql-apache2-on-ubuntu-7.10 But when i try 'snort -c /etc/snort/snort.conf' it stops at here: Log directory = /var/log/snort database: 'mysql' support is not compiled into this build of snort And it tells me to re-run snort with the --with-mysql switch which is interesting because i compiled snort with this switch already. Can you help me? I run snort 2.8.5 on the latest version of ubuntu linux. Thank you, Adam Szabo ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users<https://lists.sourceforge.net/lists/listinfo/snort-users%0ASnort-users>list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
-- Hackers for Charity Board Member GPEN, C|HFI, ESSE-D, SnortCP, TNAP, TNCP, TECP, A+, whatever.. Bad news doesn't get any better with age.
------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- snort not running with mysql Adam Szabo (Oct 21)
- Re: snort not running with mysql Joel Esler (Oct 21)
- Re: snort not running with mysql Jack Pepper (Oct 21)
- Re: snort not running with mysql Rob Dixon (Oct 21)
- Re: snort not running with mysql Joel Esler (Oct 21)