probs with Snort and Acid
From: LRW (deja_at_celticbear.com)
Date: 02/29/04
- Next message: Joachim Mæland: "Re: Pls help: Linksys WPC11 V3 Setup"
- Previous message: Edward S. Rice: "Re: Help Printing from WinXP to Fedora via SAMBA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: 28 Feb 2004 18:06:17 -0800
I can't get Acid, the Web based GUI report display for Snort to work.
Actually, Acid works but I think it's Snort that's not. I can't get it
to load and thus put any results in the mySQL database (which is all
set up OK.)
I followed the setup file:
http://www.snort.org/docs/snort_acid_rh9.pdf
to a T, but my Acid Console is all 0's. Not showing any hits.
I actually have both a "snort" and a "snortd" in my /etc/rc.d/init.d/
folder!
As well as a /usr/sbin/snort
if I
$/usr/sbin/snort -D -v
then it gets set as a session (I think. It gets an entry in "ps" at
least, although I can't find any other evidence that it's running.)
But still nothing in Acid.
If I
$/etc/rc.d/init.d/snortd restart
or restart it in the service control panel,
I get "Stopping Snort: failed, Start snort: OK"
but it doesn't have a "ps" entry and if I do it again, stopping gets a
"failed".
If I
$/etc/rc.d/init.d/snort restart
I get
Stoping Intrusion Database System: SNORT
./snort: line 1: pidof: command not found
SNORT is not running!
Starting Intrusion Database System: SNORT
./snort: line 1: pidof: command not found
I've double checked snort.conf and the two snort(d) files in init.d
and all the paths and the line to output to the database are all
correct.
So frustrating.
Any suggestions? =)
Thanks!
Liam
- Next message: Joachim Mæland: "Re: Pls help: Linksys WPC11 V3 Setup"
- Previous message: Edward S. Rice: "Re: Help Printing from WinXP to Fedora via SAMBA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
