Project

General

Profile

Actions
Copy link

Feature #226

closed

mysql support for Base web interface

Added by Guillaume Le Bigot almost 14 years ago. Updated over 13 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
Effort:
Difficulty:
Label:

Description

Hi,

Is there a possibility to connect Suricata with my snort Mysql database in order to keep using Base web interface ?
(i just discovered Suricata and installed Suricata on my server)

Thx for all

Actions
Copy link
 #1

Updated by Will Metcalf over 13 years ago

We support unified/unified2 output, which can then be feed into base via barnyard/barnyard2. Is there still a need for native mysql support? Or will this work for you?

Actions
Copy link
 #2

Updated by Victor Julien over 13 years ago

  • Target version deleted (1.0.1)
Actions
Copy link
 #3

Updated by Guillaume Le Bigot over 13 years ago

Hi, sorry for my lateness and thank you for your help !
It's ok with this installation suricata/barnyard2/BASE.
But i have one more problem on base web interface because all signatures are named in this format "Snort Alert [XXX...]" :
#0-(14-77) [snort] Snort Alert [1:472:0] 2010-09-23 21:46:48
#1-(14-79) [snort] Snort Alert [1:2006380:0] 2010-09-23 21:46:48
etc...

So it's difficult to identify each one alert.
Do you know how i can resolve that ?

Actions
Copy link
 #4

Updated by Guillaume Le Bigot over 13 years ago

It's ok now, i forgot to put the "sid-msg.map" file in suricata directory

Actions
Copy link
 #5

Updated by Victor Julien over 13 years ago

  • Status changed from New to Closed

Glad it worked out :)

Actions
Copy link

Also available in: Atom PDF