Differences

This shows you the differences between two versions of the page.

--- сервис_barnyard2 [2015/06/03 10:45]
val
+++ сервис_barnyard2 [2016/11/16 08:56] (current)
val [Ubuntu 14.04]
@@ Line 4: / Line 4: @@
   * [[https://github.com/firnsy/barnyard2/issues/127|snort generate logs，barnyard2 can not read records]]
-===== Ubuntu 14.04 =====
+===== Ubuntu =====
-  * [[http://computer-outlines.over-blog.com/article-nids-snort-barnyard2-apache2-base-with-ubuntu-14-04-lts-123532107.html]]
+  * [[http://computer-outlines.over-blog.com/article-nids-snort-barnyard2-apache2-base-with-ubuntu-14-04-lts-123532107.html|SNORT / Barnyard2 / MySQL / BASE with Ubuntu 14.04 LTS]]
 ===== FreeBSD =====
@@ Line 32: / Line 32: @@
 1000001: src, 2 min
 </code><code>
+# service snort stop
+# rm /var/log/snort/*
+# service snort start
 # /usr/local/bin/barnyard2 -c /usr/local/etc/barnyard2.conf -d /var/log/snort/ -f snort.log
 # cat /etc/rc.conf
-...
 </code><code>
+...
 barnyard2_enable=yes
 barnyard2_flags="-D -d /var/log/snort/ -f snort.log"
-...
+</code><code>
+# service barnyard2 start
 </code>
+==== Принцип отбора правил ====
+<code>
+# cat classification.config
+</code><code>
+...
+config classification: web-application-attack,Web Application Attack,1
+...
+</code>

Методические материалы Лохтурова Вячеслава