Snort mailing list archives
SNORT,ACID,MYSQL no alerts, please help....
From: zahid mohammed <zahidmohtada () gmail com>
Date: Sun, 24 Oct 2004 22:32:44 -0600
Hi, When snort (running as a service), ACID and mysql are run, does the snort log all the packets in the database or does it only log the packets which have triggered the alerts???? I wanted to know this because my ACID is not showing any alerts. And when I check the database there is nothing logged in the database. I used third party tools like NMAP for port scanning, but there are no alerts. The line which I uncommented in snort is "output database: log, mysql, user=root dbname=snortdatabase host=localhost". I gave no password here because the same thing is given in mysql.ini and to the user(root) of snortdatabase created using DBTOOLS. username = root, and the password line is commented. Please help me in figuring out the problem. Thank you, Regards, ZAHID. ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- SNORT,ACID,MYSQL no alerts, please help.... zahid mohammed (Oct 24)
- Re: SNORT,ACID,MYSQL no alerts, please help.... Kevin Johnson (Oct 25)
- Re: SNORT,ACID,MYSQL no alerts, please help.... Steven Crandell (Oct 25)
- Re: SNORT,ACID,MYSQL no alerts, please help.... Kevin Johnson (Oct 25)