Thursday, March 7, 2013

Snort 2.9.4.1 installation guides have been posted

Thanks to the hard work of William Parker, he just sent me a whole swath of updates to his excellent Snort installation guides for various OSes.

Take a look at http://www.snort.org/docs and you'll see install guides for CentOS, NetBSD, Fedora, OpenSuSE, FreeBSD, and OpenBSD!

Thanks so much Mr. Parker, your work is extremely helpful to the community and I hope lots of people use them!

5 comments:

  1. Hi,
    I installed Snort 2.9.4.1 and since it does not have msql Logging i am using Barnyard2 for the same. I am using Redhat and when running Barnyard2 i am getting error

    Running in Continuous mode

    --== Initializing Barnyard2 ==--
    Initializing Input Plugins!
    Initializing Output Plugins!
    Parsing config file "/etc/snort/barnyard2.conf"
    Log directory = /var/log/barnyard2
    database: 'mysql' support is not compiled into this build of snort

    ERROR: If this build of snort was obtained as a binary distribution (e.g., rpm,
    or Windows), then check for alternate builds that contains the necessary
    'mysql' support.

    If this build of snort was compiled by you, then re-run the
    the ./configure script using the '--with-mysql' switch.
    For non-standard installations of a database, the '--with-mysql=DIR'
    syntax may need to be used to specify the base directory of the DB install.

    See the database documentation for cursory details (doc/README.database).
    and the URL to the most recent database plugin documentation.


    Kindly guide me for the same.

    ReplyDelete
    Replies
    1. Dear Ajit,

      I suggest that you address your question to the appropriate Snort mailing list found here:

      http://www.snort.org/community/mailing-lists

      Delete
  2. Hi;

    I installed snort-2.9.4-1 in fedora 17 i386 (32bit) I find problems in the installation of base-1.4.5 and I can not find the version of snort-mysql package compatible with the version of snort and I can not find the package mysql-client
    can you help me to continue my study project end my PFE (final project Education)

    thank you in advance

    ReplyDelete
    Replies
    1. Dear Yosr,

      I suggest that you address your question to the appropriate Snort mailing list found here:

      http://www.snort.org/community/mailing-lists

      Delete