Snort mailing list archives

@barnyard error

From: anagha b <banagha3 () gmail com>
Date: Tue, 3 Sep 2013 11:32:28 +0530

Hi

I am using following command to run snort

/srv/snort/bin/snort -u root -g root -c /srv/snort/etc/snort.conf -i eth0


when I tried to run barnyard using this command

1]root@a:/# /usr/local/bin/barnyard2 -c /srv/snort/etc/barnyard2.conf

o/p :  ERROR: Unable to open directory '' (No such file or directory)

 started barnyard with different command suggested by peter bates in mail
this time the command is

2] /usr/local/bin/barnyard2 -c /srv/snort/etc/barnyard2.conf  - -d
/var/log/snort -f snort.u2

o/p is :

Opened spool file '/var/log/snort/snort.u2.1378112617'
Closing spool file '/var/log/snort/snort.u2.1378112617'. Read 0 records
Opened spool file '/var/log/snort/snort.u2.1378186738'
Waiting for new data
^C*** Caught Int-Signal
Barnyard2 exiting
database: Closing connection to database "snort"
===============================================================================
Record Totals:
   Records:           0




nothing happens after waiting for new data message.

This time while running barnyard with second command I have not removed
barnyard2.waldo file .

I hope this answers all the questions asked by  Mr Peter Bates  .  Plz help
me to rectify why barnyard is processing 0 records . I want to launch
portscan on snort but before that o/p file snort.u2 must be read by
barnyard or other way I ahve to launch portscan first. Plz guide.

Thanks .

------------------------------------------------------------------------------
Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
Discover the easy way to master current and previous Microsoft technologies
and advance your career. Get an incredible 1,500+ hours of step-by-step
tutorial videos with LearnDevNow. Subscribe today and save!
http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Current thread:

@barnyard error anagha b (Sep 02)
- Re: @barnyard error Peter Bates (Sep 02)
- <Possible follow-ups>
- @barnyard error anagha b (Sep 02)
  - Re: @barnyard error Peter Bates (Sep 02)
- @barnyard error anagha b (Sep 02)
- @barnyard error anagha b (Sep 05)