lillypad_33 Posted October 14, 2016 Report Posted October 14, 2016 I've got an issue when running the test (by2-test)... The test starts, and just hangs forever. Here are the last few lines of the console: Barnyard2 spooler: Event cache size set to [32768] INFO database: Defaulting Reconnect/Transaction Error limit to 10 INFO database: Defaulting Reconnect sleep time to 5 second It's been a good 10 minutes so far.... I'll keep waiting, but I suspect that there is an issue reading the snort log file. I did take a look at the log file, but it seems to be in binary... is this an issue? I have followed everything in the tutorial, but have changed from d:\winids to c:\winids Anybody have any ideas? Quote
lillypad_33 Posted October 14, 2016 Author Report Posted October 14, 2016 Must have been linked to the postgresql installation. I installed MySQl and all seems to be working now. I don't have a single alert yet though, so I'm wondering if my snort is configured correctly Quote
Morpheus Posted October 15, 2016 Report Posted October 15, 2016 What OS are you installing this on? Quote
lillypad_33 Posted October 18, 2016 Author Report Posted October 18, 2016 Hi Morpheus, I was installing this on Server 2012. Still not sure what was wrong, but I'm guessing that the postgresl configuration had something wrong. MySQL is working. Now I'm back to trying to figure which alerts to lose sleep over Quote
Morpheus Posted October 27, 2016 Report Posted October 27, 2016 Can you attach your snort.con as a file? Don't post it in a replay because the editor strips things out. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.