SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have never used snort before and I just installed it on my slackware box. I am having trouble finding the install directory. I read somewhere that it would be in /etc/snort for configuration items but this directory does not exist! I ran the comany snort -dev and snort started running showing info so I know snort is working....
Questions:
1: where are the key directorys in slackware 10.1 for snort configuration and logging??
2: Places to get some good rulesets for snort since i heard the default flags to many errors??
3.: Any other info you can give me that you think may help is appreaciated???
Acording to a doc i found, you should have a sample configuration file at /usr/local/etc called snort.conf-sample (this can vary if you used the --prefix argument when compiling).
Edit: This config sample file should also come with the sources of snort, so simply getting it from there and copying to the directory where snort tries to read it, should work.
Interesting, the only files found with both of those comands are the files from the install, Do I have to create the folders in etc and wherever else that run snort from scratch??? Does anyone know?
I downloaded snort source and I see a etc directory inside it with snort.conf file, you may want to check it. You could try creating a snort directory inside /etc with: mkdir /etc/snort and copying that config file there.
Sweeeet , thanks I didnt know you would have to use the instalation files for the directory your configs are in, all the tutorials indicate that the files would be in the /etc /snort directory of the root filesystem....
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
