snort-2.8.5.2 beta release available

Discuss installation issues/solutions for Engarde

Moderators: scrumpy, Dave, leihog

snort-2.8.5.2 beta release available

Postby Dave on Thu Feb 04, 2010 1:38 am

Hi,

I have put together a beta release of snort-2.8.5.2. Please install and test for me!

# AMD/Intel 32-bit EnGarde
http://ftp.engardelinux.org/pub/engarde ... 1.i686.rpm
http://ftp.engardelinux.org/pub/engarde ... 1.i686.rpm

# AMD/Intel 64-bit EnGarde
http://ftp.engardelinux.org/pub/engarde ... x86_64.rpm
http://ftp.engardelinux.org/pub/engarde ... x86_64.rpm

Thanks!
Dave
Dave
Site Admin
 
Posts: 107
Joined: Tue Jun 13, 2006 6:06 pm

Re: snort-2.8.5.2 beta release available

Postby leihog on Fri Feb 05, 2010 6:21 am

After installation i noticed that
/etc/init.d/snortd references /etc/rc.d/init.d/functions. Should be /etc/init.d/functions. Easily fixed.

Snortd now fails to start through /etc/init.d/snortd start with the following:
FATAL ERROR: Unable to open rules file "/etc/snort//etc/snort/rules/*beep*": No such file or directory.

I found a bunch of rule files in /var/chroot/snort/etc/ but they had all been "rpmsaved". besides I couldn't find any references to snort and chroot (ie -t /var/chroot/snort)anywhere so I guess it's not chrooted anymore.

is snort-mysql-2.8.5.2-1.x86_64.rpm required for snort to output to mysql?
That package hasnt been included before thats why i'm asking.

// Leif
leihog
 
Posts: 15
Joined: Mon Jun 26, 2006 2:33 pm
Location: Sweden


Return to Installation

Who is online

Users browsing this forum: No registered users and 1 guest

cron