(源自網絡)SNORT+ACID(入侵檢測系統)的安裝
- 詳細內容
- 分類: 網絡安全
- 發佈: 2006-06-15, 週四 22:05
- 作者 Super User
- 點擊數: 19278
Install Snort:
rpm -ivh snort-2.1.3-0.fdr.1.i386.rpm
rpm -ivh snort-mysql-2.1.3-0.fdr.1.i386.rpm
mysqladmin create snort -u root -p
mysql -D snort -u root -p < ./create_mysql
zcat snortdb-extra.gz | mysql -p snort
mysql -u root -p
grant INSERT,SELECT on snort.* to snort@localhost;
SET PASSWORD FOR snort@localhost=PASSWORD('jason');
grant INSERT,SELECT,UPDATE on snort.sensor to snort@localhost;
vi /etc/snort/snort.conf
output database: log, mysql, user=snort password=jason dbname=snort host=localhost
vi /etc/sysconfig/snort
ALERTMODE=fast
change to:
#ALERTMODE=fast
/etc/init.d/snortd restart
Install JPGraph:
Go back to your downloads directory
cp jpgraph-1.13.tar.gz /www/htdocs
cd /www/htdocs
tar –xvzf jpgraph-1.13.tar.gz
rm –rf jpgraph-1.13.tar.gz
cd jpgraph-1.13
rm -rf README
rm -rf QPL.txt
Installing ADODB:
Go back to your download directory
cp adodb390.tgz /www/htdocs/
cd /www/htdocs
tar -xvzf adodb390.tgz
rm –rf adodb390.tgz
Installing and configuring Acid:
Go back to your downloads directory
cp acid-0.9.6b23.tar.gz /www/htdocs
Version 4 Page 18 of 22 Updated 10/6/2003 9:05 PM
cd /www/htdocs
tar –xvzf acid-0.9.6b23.tar.gz
rm -rf acid-0.9.6b23.tar.gz