Re: First time snorting ... ERROR: The dynamic detection library ...

[Alan McKay <alan.mckay () gmail com>]

On Tue, Nov 19, 2013 at 3:30 PM, waldo kitty <wkitty42 () windstream net> wrote:
> FWIW: those rules will trigger on pretty much any traffic that snort sees... if
> they are not triggering at all, then your traffic may be packaged in some packet
> type...
>
> are you using VLans?

Nope, and wow, no kidding about those rules triggering anything!

I definitely have alerts now in the web GUI for barnyard.  Lots and
lots of alerts!  So I've disabled those now.

Best I can tell it was not alerting until I included the -D switch to
daemonize it.  That's odd but maybe expected.  I dunno.

So I'm going to keep my eye on it to see what's what.  And keep
digging into the manual.

So ... I think it is working.  Fingers crossed and we'll see.

I'd like to figure out how to get the most serious alerts in email but
maybe reading the fine manual will tell me that :-)



-- 
“Don't eat anything you've ever seen advertised on TV”
         - Michael Pollan, author of "In Defense of Food"

------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing 
conversations that shape the rapidly evolving mobile landscape. Sign up now. 
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!