Difference between revisions of "SNORT: Install SNORT"

From OnnoWiki
Jump to navigation Jump to search
Line 1: Line 1:
Konfigurasi database
 
 
# mysql -u root -p123456
 
create database snort;
 
grant ALL on root.* to snort@localhost;
 
grant ALL on snort.* to snort@localhost IDENTIFIED BY 'snort' ;
 
grant ALL on snort.* to snort IDENTIFIED BY 'snort' ;
 
exit
 
 
 
Install menggunakan perintah
 
Install menggunakan perintah
  
Line 25: Line 16:
 
  cd /usr/share/doc/snort-mysql/                                             
 
  cd /usr/share/doc/snort-mysql/                                             
 
  zcat create_mysql.gz | mysql -u root -h localhost -p123456 snort
 
  zcat create_mysql.gz | mysql -u root -h localhost -p123456 snort
 +
 +
Konfigurasi [[database]]
 +
 +
rm /etc/snort/db-pending-config
 +
mysql -u root -p123456
 +
create database snort;
 +
grant ALL on root.* to snort@localhost;
 +
grant ALL on snort.* to snort@localhost IDENTIFIED BY 'snort' ;
 +
grant ALL on snort.* to snort IDENTIFIED BY 'snort' ;
 +
exit
 +
 +
 +
Edit konfigurasi
 +
 +
vi /etc/snort/snort.conf
 +
 +
output database: alert, mysql, user=snort password=snort dbname=snort host=localhost
 +
output database: log, mysql, user=snort password=snort dbname=snort host=localhost
 +
  
 
==Bacaan==
 
==Bacaan==

Revision as of 12:31, 15 December 2010

Install menggunakan perintah

apt-get install snort-mysql snort-rules-default acidbase

Port

192.168.0.0/16

Konfigurasi database

cd /usr/share/doc/snort-mysql/                                             
zcat create_mysql.gz | mysql -u <user> -h <host> -p <databasename>    

Jika sedang belajar

cd /usr/share/doc/snort-mysql/                                             
zcat create_mysql.gz | mysql -u root -h localhost -p123456 snort

Konfigurasi database

rm /etc/snort/db-pending-config
mysql -u root -p123456
create database snort;
grant ALL on root.* to snort@localhost;
grant ALL on snort.* to snort@localhost IDENTIFIED BY 'snort' ;
grant ALL on snort.* to snort IDENTIFIED BY 'snort' ;
exit


Edit konfigurasi

vi /etc/snort/snort.conf
output database: alert, mysql, user=snort password=snort dbname=snort host=localhost
output database: log, mysql, user=snort password=snort dbname=snort host=localhost


Bacaan

Referensi

Pranala Menarik