Snort mailing list archives
Re: dump dynamic rules problem.
From: Steven Sturges <steve.sturges () sourcefire com>
Date: Tue, 22 Dec 2009 09:02:36 -0500
Pretty sure you need an = between the option and the path, ie. /usr/local/snort-2.8.5.1/bin/snort --dump-dynamic-rules=/tmp/ Husnu Demir wrote:
Hi People,
/usr/local/snort-2.8.5.1/bin/snort --dump-dynamic-rules /tmp/ command is not
working properly.
/usr/local/snort-2.8.5.1/bin/snort --dump-dynamic-rules /tmp/
Running in Rule Dump mode
--== Initializing Snort ==--
Initializing Output Plugins!
Snort BPF option: /tmp
ERROR: snort.c(5049) Please specify the directory path for dumping the dynamic rules
Fatal Error, Quitting..
When I try
/usr/local/snort-2.8.5.1/bin/snort --dump-dynamic-rules=/tmp
Running in Rule Dump mode
--== Initializing Snort ==--
Initializing Output Plugins!
Dumping dynamic rules...
Finished dumping dynamic rules.
Snort exiting
ls /tmp
total 0
My snort config ..
snips..
..
dynamicdetection directory /usr/local/snort-2.8.5.1/lib/snort_dynamicrules/
..
uname -a
Linux kaf 2.6.26-2-xen-amd64 #1 SMP Thu Nov 5 04:27:12 UTC 2009 x86_64 GNU/Linux
Also I used precompiled Ubuntu 8.04 rules.so.
Thanks.
hdemir.
I used
------------------------------------------------------------------------ ------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev ------------------------------------------------------------------------ _______________________________________________ Snort-devel mailing list Snort-devel () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-devel ------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev _______________________________________________ Snort-devel mailing list Snort-devel () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-devel
Current thread:
- dump dynamic rules problem. Husnu Demir (Dec 22)
- Re: dump dynamic rules problem. Steven Sturges (Dec 22)
- Re: dump dynamic rules problem. Husnu Demir (Dec 23)
- Re: dump dynamic rules problem. Steven Sturges (Dec 23)
- Re: dump dynamic rules problem. Husnu Demir (Dec 23)
- Re: dump dynamic rules problem. Matt Watchinski (Dec 23)
- Re: dump dynamic rules problem. Husnu Demir (Dec 23)
- Re: dump dynamic rules problem. Husnu Demir (Dec 23)
- Re: dump dynamic rules problem. Steven Sturges (Dec 22)