Comments on: How to install Snort Intrusion Detection System on Windows http://blog.amarkulo.com/how-to-install-snort-ids-on-windows System administration, photography and DIY projects Sun, 20 Jun 2010 14:23:24 +0000 hourly 1 http://wordpress.org/?v=abc By: FooSpidy » Blog Archive » A fairly decent honeypot http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-332 FooSpidy » Blog Archive » A fairly decent honeypot Sun, 20 Jun 2010 14:23:24 +0000 http://blog.amarkulo.com/?p=267#comment-332 [...] Snort release the needed tweaks may vary. A good guide for installing Snort on Windows can be found here. Below are instructions for tweaking the snort.conf file as of the 2.8.6 Snort [...] [...] Snort release the needed tweaks may vary. A good guide for installing Snort on Windows can be found here. Below are instructions for tweaking the snort.conf file as of the 2.8.6 Snort [...]

]]> By: steve http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-286 steve Thu, 01 Apr 2010 16:12:37 +0000 http://blog.amarkulo.com/?p=267#comment-286 Well I'll try it again the lines you have are not the same using Notepad ++ 269 270 are not what you have listed nor ar the otheres i will try and see if i find them line by line thanks Well I’ll try it again the lines you have are not the same using Notepad ++ 269 270 are not what you have listed nor ar the otheres i will try and see if i find them line by line thanks

]]> By: Amar Kulo http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-285 Amar Kulo Thu, 01 Apr 2010 15:56:08 +0000 http://blog.amarkulo.com/?p=267#comment-285 You are getting that because you didn't read my blog post and you didn't edited snort.conf like i have wrote. You need to point snort to look on right places because default conf is for linux and that's why you need to edit it like I have described above. You are getting that because you didn’t read my blog post and you didn’t edited snort.conf like i have wrote. You need to point snort to look on right places because default conf is for linux and that’s why you need to edit it like I have described above.

]]> By: steve http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-284 steve Thu, 01 Apr 2010 15:52:14 +0000 http://blog.amarkulo.com/?p=267#comment-284 with -K i get error: C:\Documents and setting\snort\destop\snort-2.8.5.3\src\parser.c(5050) Could not stat dynamic module path "/usr/local/lib/snort_dynamicpreprocessor/": no such file or directory fatal error, quitting... with -K i get
error: C:\Documents and setting\snort\destop\snort-2.8.5.3\src\parser.c(5050)
Could not stat dynamic module path “/usr/local/lib/snort_dynamicpreprocessor/”:
no such file or directory
fatal error, quitting…

]]> By: Amar Kulo http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-283 Amar Kulo Thu, 01 Apr 2010 15:29:29 +0000 http://blog.amarkulo.com/?p=267#comment-283 You need to pay attention to case of the switch, because -k and -K are not the same. -k <mode> Checksum mode (all,noip,notcp,noudp,noicmp,none) -K <mode> Logging mode (pcap[default],ascii,none) You need to pay attention to case of the switch, because -k and -K are not the same.

-k Checksum mode (all,noip,notcp,noudp,noicmp,none)
-K Logging mode (pcap[default],ascii,none)

]]> By: steve http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-282 steve Thu, 01 Apr 2010 15:27:08 +0000 http://blog.amarkulo.com/?p=267#comment-282 Got a fatal error when i took out -k ascii but when i add just the -k it seems to runs fine shows me a lot of information including what looks like all the commands might it be working correctly now? Got a fatal error when i took out -k ascii but when i add just the -k it seems to runs fine shows me a lot of information including what looks like all the commands might it be working correctly now?

]]> By: Amar Kulo http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-281 Amar Kulo Thu, 01 Apr 2010 15:11:54 +0000 http://blog.amarkulo.com/?p=267#comment-281 Hmm strange, try without -K ascii switch Hmm strange, try without -K ascii switch

]]> By: steve http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-280 steve Thu, 01 Apr 2010 15:10:48 +0000 http://blog.amarkulo.com/?p=267#comment-280 I get a Unknown command line checksum option: ascii fatal error, quiting when i do that I get a Unknown command line checksum option: ascii fatal error, quiting
when i do that

]]> By: Amar Kulo http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-279 Amar Kulo Thu, 01 Apr 2010 15:00:28 +0000 http://blog.amarkulo.com/?p=267#comment-279 Nope, I'm referring to the post above comments. There I have written snort -v -c C:\snort\etc\snort.conf -l C:\snort\log -K ascii as a line to test everything from command prompt ;-) I'm glad that I could help. Nope, I’m referring to the post above comments. There I have written snort -v -c C:\snort\etc\snort.conf -l C:\snort\log -K ascii as a line to test everything from command prompt ;-)

I’m glad that I could help.

]]> By: steve http://blog.amarkulo.com/how-to-install-snort-ids-on-windows/comment-page-1#comment-278 steve Thu, 01 Apr 2010 14:56:35 +0000 http://blog.amarkulo.com/?p=267#comment-278 Not sure i follow you is the blog post on twitter ? sorry new to this side of IT im just build kiosks for stores and just started school to get some more knowledge but Seems like i have a ways to go Not sure i follow you is the blog post on twitter ? sorry new to this side of IT im just build kiosks for stores and just started school to get some more knowledge but Seems like i have a ways to go

]]>