From b99978a938e451e06a0eb3303ae0412431379299 Mon Sep 17 00:00:00 2001 From: Olivier Gayot Date: Sun, 18 Jan 2015 04:51:20 +0100 Subject: mob Signed-off-by: Olivier Gayot --- practicals.adoc | 1 + snort.adoci | 16 ++++++++++++++++ 2 files changed, 17 insertions(+) create mode 100644 snort.adoci diff --git a/practicals.adoc b/practicals.adoc index 4384192..ba3da4b 100644 --- a/practicals.adoc +++ b/practicals.adoc @@ -7,3 +7,4 @@ include::ssl.adoci[] include::firewall.adoci[] include::pgp.adoci[] include::smime.adoci[] +include::snort.adoci[] diff --git a/snort.adoci b/snort.adoci new file mode 100644 index 0000000..7b0be02 --- /dev/null +++ b/snort.adoci @@ -0,0 +1,16 @@ +== Snort Practical, Week 12 == + +=== Problem 3: Fresh install configuration issues === + +After installing Snort using our package manager, the configuration check fails +because a variable in the file '/etc/snort/snort.conf' appears not to be set to +a valid value. + +==== Resolution ==== + +The header of the so called file describes us the steps to create our +configuration. A 'README.variables' file is advised to be read. However, it is +not present on our machine. To get it, we have to install the package +'snort-doc' (we can use 'apt-get' to achieve that). + +We can fix the configuration issue by setting 'HOME_NET' to '127.0.0.1'. -- cgit v1.2.3