snort+acid打造LINUX下的入侵检测系统(IDS)(上)(3) +------------+ mysql snort test +------------+ 3 rows in set (0.00 sec) mysql>use snort; mysql>show tables; 将会有这些: +------------------+ Tables_in_snort +------------------+ data detail encoding event flags icmphdr iphdr opt protocols reference reference_system schema sensor services sig_class sig_reference signature tcphdr udphdr +------------------+ 19 rows in set (0.00 sec) mysql>exit 四、安装配置Acid # 把acid-0.9.6b23.tar.gz、adodb330.tgz、jpgraph-1.11.tar.gz放到网页根目录,我这里是默认的。 # cp a*.* /usr/local/apache/htdoCS # cp jpgraph-1.11.tar.gz /usr/local/apache/htdocs # tar zxvf adodb330.tgz # tar zxvf jpgraph-1.11.tar.gz # mv jpgraph-1.11 jpgraph # tar zxvf acid-0.9.6b23.tar.gz # cd acid # vi acid_conf.php # 把“$DBlib_path = "";” 改成“$DBlib_path = "/usr/local/apache/htdocs/adodb"” # $alert_dbname = "snort_log"; //改成snort $alert_host = "localhost"; $alert_port = ""; $alert_user = "root"; $alert_password = "mypassword"; //改成你的数据库密码 /* Archive DB connection parameters */ $archive_dbname = "snort_archive"; //改成snort $archive_host = "localhost";
