Morpheus Posted November 25, 2014 Report Posted November 25, 2014 Attach you barnyard.conf file. I can log in mysql and check database # mysql -u snort -p mysql> show databases; +--------------------+ | Database | +--------------------+ | information_schema | | archive | | mysql | | performance_schema | | snort | | test | +--------------------+ Attach you barnyard.conf file.
thang_dl Posted November 26, 2014 Report Posted November 26, 2014 the file requested... barnyard2.conf
Morpheus Posted November 26, 2014 Report Posted November 26, 2014 This is your line 349 output database: log, mysql, user=base password=123456 dbname=snort host=localhost sensor_name=WinIDS-Home This is what the line 349 should look like if the tutorial was followed output database: log, mysql, user=snort password=l0gg3r dbname=snort host=winids sensor_name=WinIDS-Home Not sure what you have done as it appears you have changed critical switches. Correcting these should allow a connection to the MySQL database?
thang_dl Posted December 4, 2014 Report Posted December 4, 2014 snort does not writing file log (file log "merged.log.1417671245" 0kb) file config snort PC install snort IP (192.168.2.120/24 ) (network 192.168.2.xx) OS: Windows XP sp3 can you help me snort.conf
Morpheus Posted December 4, 2014 Report Posted December 4, 2014 Did you try: >How manually to trigger TCP, IP, UDP, and ICMP for event testing
thang_dl Posted December 5, 2014 Report Posted December 5, 2014 Thank you for help my I connect Mysql C:>mysql -u root -p Enter password: ******* mysql> connect snort; Connection id: 6 Current database: snort mysql> select * from event limit 10; Empty set (0.03 sec) mysql> and in snort file log merged.log.1417778600 (7MB) i don't know database snort empty help my
Morpheus Posted December 5, 2014 Report Posted December 5, 2014 Did you try: How manually to trigger TCP, IP, UDP, and ICMP for event testing ? What were the results?
thang_dl Posted December 5, 2014 Report Posted December 5, 2014 + I add rules in local.rules and sonrt in run file log + Barnyard2 exiting database: Closing connection to database "snort" (barnyard2.exe not run) + runing start.bat database mysql_error: Can't connect to local MySQL server through socket '/tmp/m ysql.sock' (2)
Morpheus Posted December 5, 2014 Report Posted December 5, 2014 Go back to the tutorial and complete the section labled 'Testing the Snort configuration file'. Post the results.
thang_dl Posted December 7, 2014 Report Posted December 7, 2014 Failed install snort on Windows XP. Snort error cannot write mysql. Check file log snort data but mysql -> empty run d:winidsactivatorsby2-test database mysql_error: Can't connect to local MySQL server through socket '/tmp/mysql.sock' (2)
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now