[Sguil-cvs] sguil/doc INSTALL,1.22,1.23
Status: Beta
Brought to you by:
bamm
From: Bamm V. <ba...@us...> - 2008-03-21 17:36:19
|
Update of /cvsroot/sguil/sguil/doc In directory sc8-pr-cvs8.sourceforge.net:/tmp/cvs-serv24560 Modified Files: INSTALL Log Message: Various fixes including a ref to openssl instructions. Index: INSTALL =================================================================== RCS file: /cvsroot/sguil/sguil/doc/INSTALL,v retrieving revision 1.22 retrieving revision 1.23 diff -C2 -d -r1.22 -r1.23 *** INSTALL 21 Mar 2008 17:16:11 -0000 1.22 --- INSTALL 21 Mar 2008 17:36:12 -0000 1.23 *************** *** 48,53 **** Enter password: mysql> GRANT ALL PRIVILEGES ON sguildb.* ! TO sguil@localhost IDENTIFIED BY 'sguilpasswd' ! WITH GRANT OPTION; mysql> FLUSH PRIVILEGES; ######## End Security Note ######## --- 48,52 ---- Enter password: mysql> GRANT ALL PRIVILEGES ON sguildb.* ! TO sguil@localhost IDENTIFIED BY 'sguilpasswd'; mysql> FLUSH PRIVILEGES; ######## End Security Note ######## *************** *** 58,66 **** for you on init. ! NOTE: If you choose to let sguild create the DB for you, ! then you still need to use 'GRANT' to give privledges ! for each sensor to INSERT,SELECT in the database. ! ! NOTE-2: It's highly recommended that you set your time- zone (TZ) to GMT prior to starting mysqld. This can often be done inside your mysqld init script. --- 57,61 ---- for you on init. ! NOTE: It's highly recommended that you set your time- zone (TZ) to GMT prior to starting mysqld. This can often be done inside your mysqld init script. *************** *** 69,74 **** sguild for the first time then use these instructions: Bamm@syn# mysql -u sguil -p -e "CREATE DATABASE sguildb" - Make sure each sensor has INSERT and SELECT privledges: - Bamm@syn# mysql -u sguil -p -e "GRANT INSERT,SELECT on sguildb.* to <user>@<sensorip>" Build the required tables: Bamm@syn# mysql -u sguil -p -D sguildb < ./server/sql_scripts/create_sguildb.sql --- 64,67 ---- *************** *** 77,91 **** data, and sancp tables after a fresh install. They will be created by sguild as data comes in from sensor_agent. - +-------------------+ - | Tables_in_sguildb | - +-------------------+ - | history | - | portscan | - | sensor | - | sessions | - | status | - | user_info | - | version | - +-------------------+ ########################################## --- 70,73 ---- *************** *** 132,141 **** in order for the tcl/tk interpreter to find the package.) ! 4) On startup sguild will attempt to use the tcl interpreter (tclsh) from your PATH. You may need to create a link from tclsh8.3 (or similar) to tclsh in the appropriate directory. (i.e. `ln -s /usr/local/bin/tclsh8.3 /usr/local/bin/tclsh) ! 5) Configure options within sguild.conf. Pay particular attention to the PATH you define for sguild to look for snort rules. In the future, rules will be localized in the DB, for now each rule file --- 114,126 ---- in order for the tcl/tk interpreter to find the package.) ! 4) Sguild now REQUIRES openssl. Please see the file ! OPENSSL.readme for configuration instructions. ! ! 5) On startup sguild will attempt to use the tcl interpreter (tclsh) from your PATH. You may need to create a link from tclsh8.3 (or similar) to tclsh in the appropriate directory. (i.e. `ln -s /usr/local/bin/tclsh8.3 /usr/local/bin/tclsh) ! 6) Configure options within sguild.conf. Pay particular attention to the PATH you define for sguild to look for snort rules. In the future, rules will be localized in the DB, for now each rule file *************** *** 144,148 **** As of version 0.4.1, the xscript functions were moved into sguild. ! 6) Add users to sguild.users file by running `sguild -adduser <username>` If you want your users/passwd file to be somewhere other than /etc/sguild/sguild.users or ./sguild.users, then use the --- 129,133 ---- As of version 0.4.1, the xscript functions were moved into sguild. ! 7) Add users to sguild.users file by running `sguild -adduser <username>` If you want your users/passwd file to be somewhere other than /etc/sguild/sguild.users or ./sguild.users, then use the *************** *** 151,169 **** default location. ! 7) By default the sguild.access file allows any sensor and client to connect to sguild. Update this file if you want to add access lists. ! 8) Other configuration files are included with instructions on their use in the file itself. These include sguild.email, sguild.reports, sguild.conf, autocat.conf, and sguild.queries. ! 9) Now it is time to start sguild. The command `sguild --help` will generate a short list of available switches. If you have placed your config files in a default location (/etc/sguild or ./) then you shouldn't need to specify any paths. Command line ! switches like -o (enable OpenSSL) and -D (run as a daemon) ! override the sguild.conf. If a database has not been created ! yet, you will be prompted to create it at this point: shell> ./sguild --- 136,154 ---- default location. ! 8) By default the sguild.access file allows any sensor and client to connect to sguild. Update this file if you want to add access lists. ! 9) Other configuration files are included with instructions on their use in the file itself. These include sguild.email, sguild.reports, sguild.conf, autocat.conf, and sguild.queries. ! 10) Now it is time to start sguild. The command `sguild --help` will generate a short list of available switches. If you have placed your config files in a default location (/etc/sguild or ./) then you shouldn't need to specify any paths. Command line ! switches like -D (run as a daemon) override the sguild.conf. ! If a database has not been created yet, you will be prompted ! to create it at this point: shell> ./sguild *************** *** 189,193 **** for more info), and the tcllib extension (http://tcllib.sf.net). The client - sguil.tk - also runs under win32 using the ActiveState tcl ! libraries (http://www.activestate.com/Products/ActiveTcl/). On startup, sguil.tk reads the options in sguil.conf. If a path to --- 174,179 ---- for more info), and the tcllib extension (http://tcllib.sf.net). The client - sguil.tk - also runs under win32 using the ActiveState tcl ! libraries (http://www.activestate.com/Products/ActiveTcl/). Tcl/tk ! version 8.5 is NOT supported at this time. On startup, sguil.tk reads the options in sguil.conf. If a path to |