[afnog] help with ACID installation
Mark Tinka
mtinka at africaonline.co.sz
Wed May 11 16:59:52 EAT 2005
On Wednesday 11 May 2005 15:58, Sergio Carrilho wrote:
> yes. (see the following)
>
> /* Alert DB connection parameters
> * - $alert_dbname : MySQL database name of Snort
> alert DB * - $alert_host : host on which the DB
> is stored * - $alert_port : port on which to
> access the DB * - $alert_user : login to the
> database with this user * - $alert_password :
> password of the DB user *
> * This information can be gleaned from the Snort
> database * output plugin configuration.
> */
> $alert_dbname = "snort";
> $alert_host = "localhost";
> $alert_port = "";
> $alert_user = "snort";
> $alert_password = "*******";
>
> /* Archive DB connection parameters */
> $archive_dbname = "snort";
> $archive_host = "localhost";
> $archive_port = "";
> $archive_user = "snort";
> $archive_password = "*******";
Hmmh, you might need to specify the port number, 3306.
Mark.
>
> > What you are basically trying to do is tell snort
> > how to log into MySQL (host [normally 127.0.0.1],
> > port [normally 3306 for MySQL], username & password
> > that will allow access to MySQL), where to find the
> > database (the database name you've chosen inside
> > MySQL, that will contain the data, e.g., snort) so
> > it is able to insert/retrieve your data.
> >
> > Hope this doesn't sound too complicated.
> >
> > Mark.
>
> and when I run
> /usr/sbin/snort -c /etc/snort/snort.conf -T -i eth0
> looks like it is working and logging
More information about the afnog
mailing list