Discussing Manual Installation for Apache2 with PostgreSQL Logging Latest Topics

B2-test issue/freeze

Mon, 25 Dec 2017 17:09:57 +0000

C:\Users\Operator>d:\winids\barnyard2\barnyard2.exe -c d:\winids\barnyard2\etc\barnyard2.conf -d d:\winids\snort\log -f merged.log -l d:\winids\barnyard2 -w d:\winids\snort\log\barnyard.waldo -T
Running in Test mode

--== Initializing Barnyard2 ==--
Initializing Input Plugins!
Initializing Output Plugins!
Parsing config file "d:\winids\barnyard2\etc\barnyard2.conf"

+[ Signature Suppress list ]+
----------------------------
+[No entry in Signature Suppress List]+
----------------------------
+[ Signature Suppress list ]+

WARNING: invalid Reference spec 'url,'. Ignored
WARNING: invalid Reference spec 'url,'. Ignored
WARNING: invalid Reference spec 'url,'. Ignored
WARNING: invalid Reference spec 'url,'. Ignored
Barnyard2 spooler: Event cache size set to [32768]
INFO database: Defaulting Reconnect/Transaction Error limit to 10
INFO database: Defaulting Reconnect sleep time to 5 second

..............................................

just seems to go on forever from here...

When I open task manager I can see the processes apache, PostgreSQL, and snort are all there but there appears to be no activity....

Database ERROR:Database connection failed

Fri, 25 Mar 2016 09:05:51 +0000

hey,

thanks for the guide.

i closely completed my installation,except the last step:

Starting the Windows Intrusion Detection Systems (WinIDS) Security Console

when i opened a web-browser and type 'http://winids' ", it shows DATABASE ERROR as bellow:

Error (p)connecting to DB : snort@winids

Check the DB connection variables in base_conf.php
= $alert_dbname : MySQL database name where the alerts are stored
= $alert_host : host where the database is stored
= $alert_port : port where the database is stored
= $alert_user : username into the database
= $alert_password : password for the username

Database ERROR:Database connection failed

May somebody pls kindly give some support? thank u！

Barnyard does not seem to be picking traffic

Wed, 16 Jul 2014 16:14:52 +0000

database: detail level = full

database: ignore_bpf = no

database: using the "log" facility

--== Initialization Complete ==--

______ -*> Barnyard2 <*-

/ ,,_ Version 2.1.13 (Build 327)

|o" )~| By Ian Firns (SecurixLive): http://www.securixlive.com/

Using waldo file 'd:winidssnortlogbarnyard.waldo':

spool directory = d:winidssnortlog

spool filebase = merged.log

time_stamp = 1405511881

record_idx = 2

Opened spool file 'd:winidssnortlog/merged.log.1405511881'

Closing spool file 'd:winidssnortlog/merged.log.1405511881'. Read 2 records

Opened spool file 'd:winidssnortlog/merged.log.1405523537'

Waiting for new data

07/16-18:13:59.508457 [**] [129:12:1] stream5: TCP Small Segment Threshold Exce

eded [**] [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 192.168.

253.1:139 -> 192.168.253.131:1035

No Data in Security Console

Thu, 23 Oct 2014 13:29:48 +0000

I can't seem to get any data to show up in the gui, everything is 0. I see events in the barnyard2 window. I installed to the c: partition instead of d:. I tried to replace all the references I could find. I changed all the commands in the tutorial and the configuration settings. I also changed the batch files in the activators directory and the modder.vbs script. Is there anywhere else this needs to be changed or is it not possible to make it work this way?

Thanks.