No subject


Thu Nov 23 16:36:19 EST 2017


syntax because I am on Windows and not on Unix/Linux???  I have tried
correcting the problems from within the command line but no success.
Any suggestions would be greatly appreciated.

=20

Thanks,

=20

Michael Martin

University of Montevallo


------_=_NextPart_001_01C3942B.7AF6AF36
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html>

<head>
<meta http-equiv=3DContent-Type content=3D"text/html; charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 10 (filtered)">

<style>
<!--
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:12.0pt;
	font-family:"Times New Roman";}
a:link, span.MsoHyperlink
	{color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{color:purple;
	text-decoration:underline;}
span.EmailStyle17
	{font-family:Arial;
	color:windowtext;}
span.EmailStyle18
	{font-family:Arial;
	color:navy;}
@page Section1
	{size:595.3pt 841.9pt;
	margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
	{page:Section1;}
-->
</style>

</head>

<body lang=3DEN-US link=3Dblue vlink=3Dpurple>

<div class=3DSection1>

<p class=3DMsoNormal style=3D'text-align:justify'><font size=3D2 color=3Dna=
vy
face=3DArial><span style=3D'font-size:10.0pt;font-family:Arial;color:navy'>=
Before I
start, I want to say, “Thanks!” to all of you helpful and patie=
nt
individuals out there.  Yes, I am new to Snort and “for now&#822=
1;
it seems like as soon as I solve one problem, I get one more question. 
That being said…</span></font></p>

<p class=3DMsoNormal style=3D'text-align:justify'><font size=3D2 color=3Dna=
vy
face=3DArial><span lang=3DEN-GB style=3D'font-size:10.0pt;font-family:Arial;
color:navy'> </span></font></p>

<p class=3DMsoNormal style=3D'text-align:justify'><font size=3D2 color=3Dna=
vy
face=3DArial><span lang=3DEN-GB style=3D'font-size:10.0pt;font-family:Arial;
color:navy'> </span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>I am in a Windows
environment (go ahead a chuckle) and have started using Snort.  I now =
have
my switch issues solved and (mainly thanks to folks at SwordSoft and their =
VIA
log analysis tool), I have been getting some information out. 
Unfortunately, since I am at a University and mainly sniffing traffic in
residence halls (viruses are the main problem), I have Snort alert.ids files
that are huge (27+MB for a half-day).  This appears to be way too much=
 for
VIA.</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'> </span></font=
></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>Enter SnortSnarf&#8=
230;</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>Now, (yes, I have v=
isited
WinSnort with little success thus far) I am having problems with SnortSnarf=
. 
I am perfectly happy running it from a command prompt and don’t need =
IIS
for that (I can figure that out later).  But I keep getting the follow=
ing
error:</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'> </span></font=
></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>Can’t locate =
Time/ParsDate.pm
in @INC….. line 18</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>BEGIN failed—=
compilation
aborted … line 18</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>And so on… (f=
our
errors in all)</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'> </span></font=
></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>From the looks of t=
hings,
I am assuming, the issues is probably one of syntax because I am on Windows=
 and
not on Unix/Linux???  I have tried correcting the problems from within=
 the
command line but no success.  Any suggestions would be greatly
appreciated.</span></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'> </span></font=
></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>Thanks,</span></fon=
t></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'> </span></font=
></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>Michael Martin</spa=
n></font></p>

<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span lang=3D=
EN-GB
style=3D'font-size:10.0pt;font-family:Arial;color:navy'>University of Monte=
vallo</span></font></p>

</div>

</body>

</html>
=00=

------_=_NextPart_001_01C3942B.7AF6AF36--




More information about the Snort-users mailing list