[Snort-users] W2K log directory error

Mark Rowlands mark.rowlands at ...752...
Tue Nov 20 12:24:12 EST 2001


On Tuesday 20 November 2001 4:56 pm, Jonny H wrote:
> Hi all,
>
> Sorry if this has been covered before, but I've scanned through the
> archives and the FAQ without any luck.
>
> I'm looking to install Snort 1.8.2 as a HIDS on a W2k pro test machine
> [before implementing it on servers].  However, each time I 'Test
> configuration', I get the following error message:
>
> Log directory = log
>         --== Initializing Snort ==--
> [!] ERROR: Can not get write access to logging directory "log". (directory
> doesn't exist or permissions are set incorrectly or it is not a directory
> at all)
>
> Firstly, when installing Snort, it doesn't create a folder called log.  So
> I created one, both in the Sourcefire and the Snort-1.8.2 folders.
>
> Secondly, I've enabled full access for the everyone group, so I'm assuming
> that it's not a permissions issue.
>
> Finally, I've copied the default log file [alerts.ids.txt] to the log
> folders, and subsequently changed the path in the Logs & Alerts section,
> all to no avail.
>
> I've tried installing on a different machine with exactly the same results.
> Is this a bug with the Win32 version, or is there something basic that I've
> missed?
>
> Jon

try installing to  c:\snort or similar (anything that follows good old 8.3 
type conventions)  and all will be well in the kingdom of the righteous.

A fail-safe circuit will destroy others.
		-- Klipstein




More information about the Snort-users mailing list