[Sguil-users] help with barnyard output problem: Unrecognized argument for Sguil plugin
Status: Beta
Brought to you by:
bamm
Menu
▾
▴
[Sguil-users] help with barnyard output problem: Unrecognized argument for Sguil plugin
|
From: Ricardo <thr...@gm...> - 2007-04-24 18:10:24
|
hi, I am setting up a sguil installation using barnyard, and when barnya= rd tries to send the data to the sguil server, I get several errors: Barnyard Version 0.2.0 (Build 32) WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: mysql WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: sensor_id 0 WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: database sguil WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: server localhost WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: user sguil WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: password sguil_pass WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: sguild_host localhost WARNING /etc/snort/barnyard.conf (139) =3D> Unrecognized argument for Sg= uil plugin: sguild_port 7736 I am runnning Kubuntu 7.04, sguil 0.6.1, mysql 5.0.22, and I installed a= nd patched the barnyard in the following way (without errors): sudo wget http://www.snort.org/dl/barnyard/barnyard-0.2.0.tar.gz sudo tar -xzf barnyard-0.2.0.tar.gz cd /usr/local/src/sguil-0.6.1/sensor/barnyard_mods; sudo cp configure.in /usr/local/src/barnyard-0.2.0/; sudo cp op_sguil.c op_sguil.h op_plugbase.c.patch /usr/local/src/barnyard-0.2.0/src/output-plugins cd /usr/local/src/barnyard-0.2.0/src/output-plugins; sudo patch op_plugbase.c < op_plugbase.c.patch; cd ../../; sudo ./autojunk.sh; sudo ./configure --enable-mysql --enable-tcl --with-tcl=3D/usr/lib/tcl8.= 3; sudo make && sudo make install; The sguil plugin configuration is: output sguil: mysql, sensor_id 0, database sguil, server localhost, user= sguil, password sguil_pass, sguild_host localhost, sguild_port 7736 Could anyone help me with this?? Do you need more relevant data? Thanks -- = Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ |