Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-server

From: Robert Welz <welz@×××××××××.de>
To: gentoo-server@l.g.o
Subject: [gentoo-server] barnyard sguil output plugin doesn't work
Date: Sat, 05 Aug 2006 11:03:19
Message-Id: 44D47A3A.30008@fixe-post.de
1 Hello.
2
3 Please excuse, I posted this on the users list, but I wanted to be sure
4 before writing a bug report.
5
6 I installed snort, sguil-sensor and barnyard (all latest version) on one
7 of my machines and I can't start barnyard. Does someone has a running
8 installation and could tell me the version numbers of all three
9 programs? I suspect that the version numbers of barnyard and sguil don't
10 fit, i.e. that the sguil patch on barnyard doesn't work.
11
12 The sguil USE flag on barnyard is set.
13
14 When I start by command line:
15
16 Merkur snort # barnyard -c /etc/snort/barnyard.conf -d
17 /var/lib/sguil/Merkur -g /etc/snort/gen-msg.map -s
18 /etc/snort/sid-msg.map -f snort_unified.log -w /etc/snort/waldo.file -L
19 /var/lib/sguil/Merkur -a /var/lib/sguil/Merkur/archive
20 Barnyard Version 0.2.0 (Build 32)
21
22 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
23 Sguil plugin: mysql
24 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
25 Sguil plugin: sensor_id 0
26 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
27 Sguil plugin: database sguildb
28 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
29 Sguil plugin: server 192.168.6.122
30 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
31 Sguil plugin: user root
32 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
33 Sguil plugin: password pass
34 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
35 Sguil plugin: sguild_host 192.168.7.122
36 WARNING /etc/snort/barnyard.conf (136) => Unrecognized argument for
37 Sguil plugin: sguild_port 7736
38
39 My barnyard.conf:
40
41 ...
42 output sguil: mysql, sensor_id 0, database sguildb, server
43 192.168.6.122, user root, password pass sguild_host
44 192.168.7.122, sguild_port 7736
45
46
47 Thank you for help,
48 Robert Welz
49
50 --
51 gentoo-user@g.o mailing list
52
53
54 --
55 gentoo-server@g.o mailing list
Report Message
Find on MARC Find on Google Groups