[Snort-devel] compiling --with-mysql on FreeBSD 4.5

Juergen.Deitermann at ...1245... Juergen.Deitermann at ...1245...
Tue Apr 9 07:54:03 EDT 2002

Hello everyone,
I have a problem to log to mysql with snort-1.8.6. This is my enviroment:
System Architecture: i386 (PIII 550)
Operating System and version: FreeBSD 4.5-RELEASE 
What rules: http://www.snort.org/dl/snapshots/snortrules.tar.gz
What command line switches: -c snort.conf -r snort.log -d -e -S
snort.conf: output database: log, mysql, user=snort password=XXXXXX
dbname=snort host=localhost sensor_name=$SENSORNAME

I downloaded snort-1.8.6, and then made the following
# ./configure --with-mysql=/usr/local/libexec
# make
# make install
# snort -c snort.conf -r logfile -d -e -S SENSORNAME=sensorname
I get this error-message:
Log directory = /var/log/snort
TCPDUMP file reading mode.
Reading network traffic from "snort.log" file.
snaplen = 1514

        --== Initializing Snort ==--
Initializing Preprocessors!
Initializing Plug-ins!
Initializating Output Plugins!
Parsing Rules file snort.conf

Initializing rule chains...
No arguments to frag2 directive, setting defaults to:
    Fragment timeout: 60 seconds
    Fragment memory cap: 4194304 bytes
Stream4 config:
    Stateful inspection: ACTIVE
    Session statistics: INACTIVE
    Session timeout: 30 seconds
    Session memory cap: 8388608 bytes
    State alerts: INACTIVE
    Scan alerts: ACTIVE
    Log Flushed Streams: INACTIVE
No arguments to stream4_reassemble, setting defaults:
     Reassemble client: ACTIVE
     Reassemble server: INACTIVE
     Reassemble ports: 21 23 25 53 80 143 110 111 513
     Reassembly alerts: ACTIVE
     Reassembly method: FAVOR_OLD
Back Orifice detection brute force: DISABLED
database: compiled support for ( )
database: configured to use mysql
database: mysql support is not compiled in this copy

 Check your configuration file to be sure you did not mis-spell "mysql".
 If you did not, you will need to reconfigure and recompile ensuring that
 you have set the correct options to the configure script. Type 
 "./configure --help" to see options for the configure script.

Fatal Error, Quitting..

I have done the same way with snort-1.8.3 and snort-1.8.4beta1 -> no
problems, everythings working fine!

Is there a problem with --with-mysql on FreeBSD ?

Juergen Deitermann

