[Snort-users] problems with barnyard, snort and mysql

Paul Schmehl pauls at ...6838...
Fri Mar 11 14:01:59 EST 2005


--On Friday, March 11, 2005 06:54:42 PM -0300 Alejandro Flores 
<alejandrorflores at ...11827...> wrote:
>
> Start Barnyard:
> barnyard -c /etc/barnyard.conf -d /var/log/snort -a
> /var/log/snort-archive -f snort.log -w /var/log/snort/waldo -s
> /etc/snort/sid-msg.map -g /etc/snort/gen-msg.map -p
> /etc/snort/classification.config -D
>
Just a note here:

In the config section of the barnyard.conf file you can add these:

# set other config options
config sid-msg-map: /usr/local/share/snort/sid-msg.map
config gen-msg-map: /usr/local/share/snort/gen-msg.map
config class-file: /usr/local/share/snort/classification.config

(with the correct paths, of course)
to reduce the amount of crap on the commandline when you start by.

(Read the source, Luke.)

Paul Schmehl (pauls at ...6838...)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu




More information about the Snort-users mailing list