欢迎大家赞助一杯啤酒🍺 我们准备了下酒菜:Formal mathematics/Isabelle/ML, Formal verification/Coq/ACL2, C++/F#/Lisp
Snort
来自开放百科 - 灰狐
(版本间的差异)
| 第3行: | 第3行: | ||
Debian | Debian | ||
apt-get install snort | apt-get install snort | ||
| + | apt-get install snort-doc | ||
==PostgreSQL== | ==PostgreSQL== | ||
apt-get install snort-pgsql | apt-get install snort-pgsql | ||
==MySQL== | ==MySQL== | ||
| − | + | mysql> create database snort; | |
| + | mysql> grant INSERT,SELECT,UPDATE,CREATE,DELETE,EXECUTE on snort.* to snort@localhost; | ||
| + | mysql> set password for snort@localhost=PASSWORD('snort'); | ||
| + | mysql> flush privileges; | ||
| + | mysql -u root -p snort <//home/allen/snort-2.8.3.2/schemas/create_mysql | ||
| + | edit the /etc/snort/snort.conf | ||
| + | output database: log, mysql, user=snort password=snort dbname=snort host=localhost | ||
| + | chown root:snort /etc/snort/snort.conf | ||
| + | chmod 0640 /etc/snort/snort.conf | ||
| + | /usr/sbin/snort -c /etc/snort/snort.conf & | ||
| + | echo "SELECT hostname FROM sensor;" | mysql -u root -p snort | ||
==Run== | ==Run== | ||
/usr/local/bin/snort -d -h 192.168.1.0/24 -l /var/log/snort -c /usr/local/etc/snort.conf -s -D | /usr/local/bin/snort -d -h 192.168.1.0/24 -l /var/log/snort -c /usr/local/etc/snort.conf -s -D | ||
2009年3月22日 (日) 13:25的版本
Snort - the de facto standard for intrusion detection/prevention
目录 |
Install
Debian
apt-get install snort apt-get install snort-doc
PostgreSQL
apt-get install snort-pgsql
MySQL
mysql> create database snort;
mysql> grant INSERT,SELECT,UPDATE,CREATE,DELETE,EXECUTE on snort.* to snort@localhost;
mysql> set password for snort@localhost=PASSWORD('snort');
mysql> flush privileges;
mysql -u root -p snort <//home/allen/snort-2.8.3.2/schemas/create_mysql
edit the /etc/snort/snort.conf
output database: log, mysql, user=snort password=snort dbname=snort host=localhost
chown root:snort /etc/snort/snort.conf
chmod 0640 /etc/snort/snort.conf
/usr/sbin/snort -c /etc/snort/snort.conf &
echo "SELECT hostname FROM sensor;" | mysql -u root -p snort
Run
/usr/local/bin/snort -d -h 192.168.1.0/24 -l /var/log/snort -c /usr/local/etc/snort.conf -s -D
Links
分享您的观点
