[Snort-users] error with rulesets
solsat555 at ...1985...
Sat May 5 11:21:14 EDT 2001
snort -V shows :
-*> Snort! <*-
By Martin Roesch (roesch at ...66..., www.snort.org)
snort -v -c conf.file shows :
Initializing Network Interface eth0
Kernel filter, protocol ALL, TURBO mode (63 frames), raw packet socket
Decoding Ethernet on interface eth0
Initializating Output Plugins!
Initializing rule chains...
database: compiled support for ( mysql )
database: configured to use mysql
database: database name = snort
database: user = SOMEone
database: host = localhost
database: detail level = full
database: sensor name = 192.X.G.H
database: sensor id = DD
database: using the "log" facility
[!] ERROR /etc/snort/exploit.rules(20) => Bad port number: "(msg:"EXPLOIT"
the exploit.rules file (AS ALL the .rules) are from :
checked the rules file, cant pick up whats wrong with it
please reply !!!!
More information about the Snort-users