User Tools
сервис_barnyard2
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
сервис_barnyard2 [2015/06/03 10:33] val |
сервис_barnyard2 [2015/06/05 10:10] val [Принцип отбора правил] |
||
|---|---|---|---|
| Line 2: | Line 2: | ||
| * [[https://github.com/firnsy/barnyard2/blob/master/doc/README.snortsam|barnyard2/doc/README.snortsam]] | * [[https://github.com/firnsy/barnyard2/blob/master/doc/README.snortsam|barnyard2/doc/README.snortsam]] | ||
| - | * [[http://www.itcooky.com/?p=3108|Установка на FreeBSD 9 системы анализа Snort и блокировки SnortSAM зловредного трафика!]] | ||
| * [[https://github.com/firnsy/barnyard2/issues/127|snort generate logs,barnyard2 can not read records]] | * [[https://github.com/firnsy/barnyard2/issues/127|snort generate logs,barnyard2 can not read records]] | ||
| + | ===== Ubuntu 14.04 ===== | ||
| + | |||
| + | * [[http://computer-outlines.over-blog.com/article-nids-snort-barnyard2-apache2-base-with-ubuntu-14-04-lts-123532107.html]] | ||
| + | |||
| + | ===== FreeBSD ===== | ||
| + | |||
| + | * [[http://www.itcooky.com/?p=3108|Установка на FreeBSD 9 системы анализа Snort и блокировки SnortSAM зловредного трафика!]] | ||
| <code> | <code> | ||
| # pkg install barnyard2 # no need, install as snort dependence | # pkg install barnyard2 # no need, install as snort dependence | ||
| Line 29: | Line 35: | ||
| # cat /etc/rc.conf | # cat /etc/rc.conf | ||
| - | ... | ||
| </code><code> | </code><code> | ||
| + | ... | ||
| barnyard2_enable=yes | barnyard2_enable=yes | ||
| barnyard2_flags="-D -d /var/log/snort/ -f snort.log" | barnyard2_flags="-D -d /var/log/snort/ -f snort.log" | ||
| + | </code><code> | ||
| + | # service snort stop | ||
| + | |||
| + | # rm /var/log/snort/* | ||
| + | |||
| + | # service snort start | ||
| + | |||
| + | # service barnyard2 start | ||
| + | </code> | ||
| + | |||
| + | ==== Принцип отбора правил ==== | ||
| + | |||
| + | <code> | ||
| + | # cat classification.config | ||
| + | </code><code> | ||
| + | ... | ||
| + | config classification: web-application-attack,Web Application Attack,1 | ||
| ... | ... | ||
| </code> | </code> | ||
| + | |||
сервис_barnyard2.txt · Last modified: 2016/11/16 08:56 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
