Great post!
One other note - from a 'base' install the user will need to install Mail & Mail_Mime from pear:
Code:pear install MailCheers,Code:pear install Mail_Mime
SM
Great post!
One other note - from a 'base' install the user will need to install Mail & Mail_Mime from pear:
Code:pear install MailCheers,Code:pear install Mail_Mime
SM
I solve this problem, but i got another, i run:
cat /var/log/syslog | grep snort
/var/log/snort/alert: permission denied.
to fix it i run:
chmod --verbose 777 /var/log/snort/alert
/etc/init.d/snort restart
but now i have this:
cat /var/log/syslog | grep snort
snort[3445]: PID path stat checked out ok, PID path set to /var/run/
snort[3445]: Writing PID "3445" to file "/var/run//snort_eth0.pid"
snort[3445]: Daemon initialized, signaled parent pid: 3444
snort[3444]: Daemon parent exiting
snort[3445]: database: mysql_error: Unknown column 'sid' in 'field list'
snort[3445]: database: mysql_error: Unknown column 'hostname' in 'field list' SQL=INSERT INTO sensor (hostname, interface, detail, encoding, last_cid) VALUES ('172.16.3.111','eth0',1,0, 0)
Any HELP ...???
How do I tell snort to use wlan0 and not eth0, in thee config file ?
You probably got that figured out right after you posted, but
Code:dpkg-reconfigure snort-mysql
Eric
empower systems
frisco, tx
hi!
when I make "pgrep -l snort" nothing appears, so I suppose the snort is not running, and when I try "/etc/init.d/snort start" I get
~$ sudo /etc/init.d/snort start
* Starting Network Intrusion Detection System snort [fail]
just this error, I am confused about what could be the problem
tks
Bookmarks