[Sguil-cvs] sguil/doc INSTALL,1.22,1.23

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Update of /cvsroot/sguil/sguil/doc
In directory sc8-pr-cvs8.sourceforge.net:/tmp/cvs-serv24560

Modified Files:
	INSTALL 
Log Message:
Various fixes including a ref to openssl instructions.

Index: INSTALL
===================================================================
RCS file: /cvsroot/sguil/sguil/doc/INSTALL,v
retrieving revision 1.22
retrieving revision 1.23
diff -C2 -d -r1.22 -r1.23
*** INSTALL	21 Mar 2008 17:16:11 -0000	1.22
--- INSTALL	21 Mar 2008 17:36:12 -0000	1.23
***************
*** 48,53 ****
      Enter password:
      mysql> GRANT ALL PRIVILEGES ON sguildb.*
!            TO sguil@localhost IDENTIFIED BY 'sguilpasswd'
!            WITH GRANT OPTION;
      mysql> FLUSH PRIVILEGES;
  ######## End Security Note ########
--- 48,52 ----
      Enter password:
      mysql> GRANT ALL PRIVILEGES ON sguildb.*
!            TO sguil@localhost IDENTIFIED BY 'sguilpasswd';
      mysql> FLUSH PRIVILEGES;
  ######## End Security Note ########
***************
*** 58,66 ****
  for you on init.

! NOTE: If you choose to let sguild create the DB for you,
! then you still need to use 'GRANT' to give privledges
! for each sensor to INSERT,SELECT in the database.
! 
! NOTE-2: It's highly recommended that you set your time-
  zone (TZ) to GMT prior to starting mysqld. This can
  often be done inside your mysqld init script.
--- 57,61 ----
  for you on init.

! NOTE: It's highly recommended that you set your time-
  zone (TZ) to GMT prior to starting mysqld. This can
  often be done inside your mysqld init script.
***************
*** 69,74 ****
  sguild for the first time then use these instructions:
    Bamm@syn# mysql -u sguil -p -e "CREATE DATABASE sguildb"
- Make sure each sensor has INSERT and SELECT privledges:
-   Bamm@syn# mysql -u sguil -p -e "GRANT INSERT,SELECT on sguildb.* to <user>@<sensorip>"
  Build the required tables:
    Bamm@syn# mysql -u sguil -p -D sguildb < ./server/sql_scripts/create_sguildb.sql
--- 64,67 ----
***************
*** 77,91 ****
           data, and sancp tables after a fresh install. They will be created by
           sguild as data comes in from sensor_agent.
-   +-------------------+
-   | Tables_in_sguildb |
-   +-------------------+
-   | history           |
-   | portscan          |
-   | sensor            |
-   | sessions          |
-   | status            |
-   | user_info         |
-   | version           |
-   +-------------------+

  ##########################################
--- 70,73 ----
***************
*** 132,141 ****
  in order for the tcl/tk interpreter to find the package.)

! 4) On startup sguild will attempt to use the tcl interpreter
  (tclsh) from your PATH. You may need to create a link from
  tclsh8.3 (or similar) to tclsh in the appropriate directory.
  (i.e. `ln -s /usr/local/bin/tclsh8.3 /usr/local/bin/tclsh)

! 5) Configure options within sguild.conf. Pay particular attention
  to the PATH you define for sguild to look for snort rules.  In the
  future, rules will be localized in the DB, for now each rule file
--- 114,126 ----
  in order for the tcl/tk interpreter to find the package.)

! 4) Sguild now REQUIRES openssl. Please see the file
! OPENSSL.readme for configuration instructions.
! 
! 5) On startup sguild will attempt to use the tcl interpreter
  (tclsh) from your PATH. You may need to create a link from
  tclsh8.3 (or similar) to tclsh in the appropriate directory.
  (i.e. `ln -s /usr/local/bin/tclsh8.3 /usr/local/bin/tclsh)

! 6) Configure options within sguild.conf. Pay particular attention
  to the PATH you define for sguild to look for snort rules.  In the
  future, rules will be localized in the DB, for now each rule file
***************
*** 144,148 ****
  As of version 0.4.1, the xscript functions were moved into sguild.

! 6) Add users to sguild.users file by running `sguild -adduser <username>`
  If you want your users/passwd file to be somewhere other than
  /etc/sguild/sguild.users or ./sguild.users, then use the
--- 129,133 ----
  As of version 0.4.1, the xscript functions were moved into sguild.

! 7) Add users to sguild.users file by running `sguild -adduser <username>`
  If you want your users/passwd file to be somewhere other than
  /etc/sguild/sguild.users or ./sguild.users, then use the
***************
*** 151,169 ****
  default location.

! 7) By default the sguild.access file allows any sensor and client
  to connect to sguild. Update this file if you want to add access
  lists.

! 8) Other configuration files are included with instructions on
  their use in the file itself. These include sguild.email, 
  sguild.reports, sguild.conf, autocat.conf, and sguild.queries.

! 9) Now it is time to start sguild. The command `sguild --help`
  will generate a short list of available switches. If you have
  placed your config files in a default location (/etc/sguild or
  ./) then you shouldn't need to specify any paths. Command line
! switches like -o (enable OpenSSL) and -D (run as a daemon) 
! override the sguild.conf. If a database has not been created
! yet, you will be prompted to create it at this point:

      shell> ./sguild
--- 136,154 ----
  default location.

! 8) By default the sguild.access file allows any sensor and client
  to connect to sguild. Update this file if you want to add access
  lists.

! 9) Other configuration files are included with instructions on
  their use in the file itself. These include sguild.email, 
  sguild.reports, sguild.conf, autocat.conf, and sguild.queries.

! 10) Now it is time to start sguild. The command `sguild --help`
  will generate a short list of available switches. If you have
  placed your config files in a default location (/etc/sguild or
  ./) then you shouldn't need to specify any paths. Command line
! switches like -D (run as a daemon) override the sguild.conf. 
! If a database has not been created yet, you will be prompted 
! to create it at this point:

      shell> ./sguild
***************
*** 189,193 ****
  for more info), and the tcllib extension (http://tcllib.sf.net). The
  client - sguil.tk - also runs under win32 using the ActiveState tcl
! libraries (http://www.activestate.com/Products/ActiveTcl/).

  On startup, sguil.tk reads the options in sguil.conf. If a path to
--- 174,179 ----
  for more info), and the tcllib extension (http://tcllib.sf.net). The
  client - sguil.tk - also runs under win32 using the ActiveState tcl
! libraries (http://www.activestate.com/Products/ActiveTcl/). Tcl/tk
! version 8.5 is NOT supported at this time.

  On startup, sguil.tk reads the options in sguil.conf. If a path to