RE: SnortCenter-Acid-SuSE byte_test issue

[<CGhercoias () TWEC COM>]

Hello guys,

I see the below e-mail is dated back on May 2004. I was running into the
same issue for quite a while but my approach was something like search the
byte_test word in the snort.conf file and delete it, then start snort.

Per AJ Butcher, I fetched the CVS distribution and still doesn't work.
Actually doesn't work anymore.
It gives back the message:
Database ERROR:Database ERROR:Unknown column 'id' in 'field list'

What could be wrong?

Thank you,
___________________________
Catalin A. Ghercoias
WEB/Network Security Administrator 
Office Phone: +(518) 452-1242 Ext.7435
Fax: (518) 452-4768
Mail: Catalin Ghercoias
website: http://www.fye.com 
The content of this communication is classified as Trans World Entertainment
Confidential and Proprietary Information. As such, it is intended solely for
the use of the individual or entity to whom it is addressed and only others
who are authorized to receive it. If you are not one of those, you are
hereby notified that any disclosure, copying, distribution, or action in
reliance on the contents of this information is strictly prohibited and may
be unlawful. If you have received this communication in error, please notify
us immediately by responding to this communication and then deleting it from
your system. 


-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net] On Behalf Of AJ Butcher,
Information Systems and Computing
Sent: Thursday, May 20, 2004 5:04 AM
To: Mike Feetham; snort-users () lists sourceforge net
Subject: Re: [Snort-users] SnortCenter-Acid-SuSE byte_test issue



--On 19 May 2004 15:55 -0400 Mike Feetham <mike.feetham () percepta-crm com>
wrote:

> Hi folks,
>
> I've been trying to get Snort running with SnortCenter and ACID on 
> SuSE 9.0, but running into some issues.  I used Steven Scott's 
> Implementation guide for Redhat 9.0 for guidance as much as possible.
>
> Everything has loaded fine, and I got everything installed and 
> configured up to the point where I tell SnortCenter what rules to use on
the sensor.
> I selected "Use Default Active Snort Ruleset" and pushed the config to 
> the sensor with no problems (also configured the home_net and 
> external_net variables).
>
> When I tell SnortCenter to start the sensor, the sensor kicks back the 
> following error:
>
> ERROR: ERROR /etc/snort/snort.eth0.conf (444): Bad arguments to
> byte_test:  Fatal Error, Quitting..

This is a FAQ. Use the Snortcenter2 fork from CVS: 
<http://cvs.sourceforge.net/viewcvs.py/snortcenter2/snortcenter-console-pat
ch/>

Best Regards,
Alex.
--
Alex Butcher: Security & Integrity, Personal Computer Systems Group
Information Systems and Computing             GPG Key ID: F9B27DC9
GPG Fingerprint: D62A DD83 A0B8 D174 49C4 2849 832D 6C72 F9B2 7DC9




-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g. 
Take an Oracle 10g class now, and we'll give you the exam FREE.
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Attachment: smime.p7s
Description: