| Search Site |
| Search Rules |
| Account |
| not registered? |
| can't login? |
| user preferences |
 |
 |
|
|||||||||||||||||||
Next: 7.1 I think I Up: The Snort FAQ Previous: 6.16 How can I
7 Problems
Subsections
- 7.1 I think I found a bug in Snort. Now what?
- 7.2 SMB alerts aren't working, what's wrong?
- 7.3 Snort says ``Garbage Packet with Null Pointer discarded!'' Huh?
- 7.4 Snort says ``Ran Out Of Space.'' Huh?
- 7.5 My ACID db connection times-out when performing long operations (e.g. deleting a large number of alerts).
- 7.6 Why does ACID keep changing my sensor number and how do I keep it consistent?
- 7.7 Why does snort report ``Packet loss statistics are unavailable under Linux?''
- 7.8 My /var/log/snort directory gets very large...
- 7.9 Why does the `error deleting alert' message occur when attempting to delete an alert with ACID?
- 7.10 ACID appears to be broken in Lynx
- 7.11 I am getting `snort [pid] uses obsolete (PF_INET, SOCK_PACKET)' warnings. What's wrong?
- 7.12 On HPUX I get device lan0 open: recv_ack: promisc_phys: Invalid argument
- 7.13 Snort is dying with a `can not create file' error and I have plenty of diskspace. What's wrong?
- 7.14 I am using Snort on Windows and receive an ``OpenPcap() error upon startup: ERROR: OpenPcap() device open: Error opening adapter'' message. What's wrong?
- 7.15 Snort is not logging to my database
- 7.16 Portscans are not being logged to my database
- 7.17 Snort is not logging to syslog
- 7.18 I am still getting bombarded with spp_portscan messages even though the IP that I am getting the portscan from is in my $DNS_SERVERs var
- 7.19 Why does chrooted Snort die when I send it a SIGHUP?
- 7.20 My snort crashes, how do I restart it?
- 7.21 Why can't snort see one of the 10Mbps or 100Mbps traffic on my autoswitch hub?
- 7.22 Trying to install snort it says: ``bad interpreter: No such file or directory''
- 7.23 I'm not seeing any interfaces listed under Win32.
- 7.24 It's not working on Win32, how can I tell if my problem is Snort or WinPcap?
- 7.25 I just downloaded a new ruleset and now Snort fails, complaining about the rules.
- 7.26 How do I speed up ACID and MySQL?
- 7.27 Why am I seeing so many ``SMTP RCPT TO overflow'' alerts ?
- 7.28 I'm getting lots of *ICMP Ping Speedera*, is this bad?
- 7.29 Why are my unified alert times off by +/- N hours?
- 7.30 I try to start Snort and it gives an error like ``ERROR: Unable to open rules file: /root/.snortrc or /root//root/.snortrc.'' What can I do to fix this?
Nigel Houghton 2006-10-02
| Terms of Use | Privacy Policy | forum archives | site feedback ©2009 Snort and Sourcefire are registered trademarks of Sourcefire, Inc. All rights reserved. |