LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   install barnyard for snort - which directory? (https://www.linuxquestions.org/questions/linux-newbie-8/install-barnyard-for-snort-which-directory-862186/)

qwertyjjj 02-12-2011 02:39 AM
install barnyard for snort - which directory?
 
I normally install programs with yum but I have to download barnyard as a requisite for snort to detect instrusion attempts.
I downloaded barnyard and ran ./configure, make, make install, etc.

Where does the program get installed? I was running this as root so does it install it into /root/barnyard?

I have something in /usr/local/bin/barnyard - is that it?

unSpawn 02-12-2011 04:48 AM
Quote:
Originally Posted by qwertyjjj (Post 4255884)
I normally install programs with yum but I have to download barnyard as a requisite for snort to detect instrusion attempts.
Note you can run Snort perfectly w/o Barnyard. It's only needed if you choose unified logging which is more efficient and faster than plain text logging.


Quote:
Originally Posted by qwertyjjj (Post 4255884)
I downloaded barnyard and ran ./configure, make, make install, etc.
Where does the program get installed? I was running this as root so does it install it into /root/barnyard?
I have something in /usr/local/bin/barnyard - is that it?
As a rule of thumb build packages or run "./configure, make" as unprivileged user to maintain integrity of the machine, not as root. Running "./configure --help" in any sane package should show a "--prefix=/usr/local" which you can also confirm by running "make -n install|grep sr/lo" ("-n" meaning --dry-run).

qwertyjjj 02-12-2011 09:36 AM
Quote:
Originally Posted by unSpawn (Post 4255945)
Note you can run Snort perfectly w/o Barnyard. It's only needed if you choose unified logging which is more efficient and faster than plain text logging.



As a rule of thumb build packages or run "./configure, make" as unprivileged user to maintain integrity of the machine, not as root. Running "./configure --help" in any sane package should show a "--prefix=/usr/local" which you can also confirm by running "make -n install|grep sr/lo" ("-n" meaning --dry-run).
If I run it as an unprivileged user then later when the program wants to run, some programs won;t run unless the files have user:group set to root so why not just install as root?

unSpawn 02-12-2011 10:54 AM
I'm talking about compiling software and building packages, not running the installed binaries.

qwertyjjj 02-12-2011 11:17 AM
Quote:
Originally Posted by unSpawn (Post 4256189)
I'm talking about compiling software and building packages, not running the installed binaries.
But when it's installed under user aaatest, all the files are owned by aaatest?

unSpawn 02-12-2011 12:53 PM
I said build packages or run "./configure, make" as unprivileged user not run "./configure; make; make install" as unprivileged user.


All times are GMT -5. The time now is 11:19 PM.