Snort init errors mysql logging?

Discussion in 'HOWTO-Related Questions' started by tbaror, Feb 23, 2011.

  1. tbaror

    tbaror New Member

    Hello All,

    I have just complied Snort under Ubuntu 10.10 x86_64 installed with all Lamp package.
    The syntax i used to compile Snort as follows below
    ~/snort- ./configure -with-mysql —prefix=/usr/local/snort —enable-ipv6 —enable-gre \-enable-mpls -enable-targetbased —enable-decoder-preprocessor-rules \-enable-ppm -enable-perfprofiling —enable-zlib —enable-active-response \-enable-normalizer —enable-reload —enable-react —enable-flexresp3
    in snort.conf i set log as follow
    output database: log, mysql, user=snort password=password dbname=snort host=localhost sensor_name=gfn-sec-sn1

    now when i run snort " /usr/local/snort/bin/snort -c /etc/snort/snort.conf -i eth2"

    I get following error
    Log directory = /var/log/snort
    database: ‘mysql’ support is not compiled into this build of snort

    ERROR: If this build of snort was obtained as a binary distribution (e.g., rpm,
    or Windows), then check for alternate builds that contains the necessary
    ‘mysql’ support.

    If this build of snort was compiled by you, then re-run the
    the ./configure script using the ‘—with-mysql’ switch.
    For non-standard installations of a database, the ‘—with-mysql=DIR’
    syntax may need to be used to specify the base directory of the DB install.

    See the database documentation for cursory details (doc/README.database).
    and the URL to the most recent database plugin documentation.
    Fatal Error, Quitting..

    Since i am not so expert with Linux should i point somewhere for MySQL or i missed something.

    Please Advice

  2. falko

    falko Super Moderator ISPConfig Developer

    (two dashes!).

Share This Page