[Snort-users] barnyard question

Mark Olbert mark at ...11252...
Mon Feb 23 11:36:06 EST 2004


I'm having some trouble figuring out how to run barnyard. I used snort to
create a binary snort.log file:

[root at ...11253... /home/sources/barnyard-0.1.0/docs]# ls -l /var/log/snort

total 22
-rw-------    1 root     root        21348 Feb 23 11:22 snort.log.1077564067

but when I do what I think is correct to read it:

[root at ...11253... /home/sources/barnyard-0.1.0/docs]# barnyard -c
/etc/snort/barnyard.conf -d /var/log/snort -f snort.log.1077564067 -o

-*> Barnyard! <*-
Version 0.1.0 (Build 17)
By Andrew R. Baker (andrewb at ...950...) and Martin Roesch
(roesch at ...1935... , www.snort.org)

Loading Data Processors...
dp_alert loaded
dp_log loaded
dp_stream_stat loaded
Loading Built-in Output Plugins...
Fast Alert plugin initialized
AlertSyslog initialized
Log Dump plugin initialized
LogPcap initialized
AlertCSV initialized
Parsing Config file: /etc/snort/barnyard.conf

Barnyard Version 0.1.0 (Build 17) started

I get this messasge:

ERROR => No input plugin found for magic: a1b2c3d4
Fatal Error, Quitting..
Exiting

Obviously I'm doing something wrong.

- Mark

mark at ...11252...

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20040223/584ef12b/attachment.html>


More information about the Snort-users mailing list