aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Config should be set up in sysconfdir/suricata. Add reference to oinkmaster guide.

Browse Source
remotes/origin/HEAD
Victor Julien 13 years ago
parent 73a1b97267
commit 697e9e660f
2 changed files with 28 additions and 18 deletions
Show Stats Download Patch File Download Diff File

33
Makefile.am
Unescape Escape View File

@ -16,18 +16,25 @@ install-data-am:
install-full: install-conf install-rules
install-conf:
install -d $(sysconfdir)
@test -e $(sysconfdir)/suricata.yaml || install -m 600 $(top_srcdir)/suricata.yaml $(sysconfdir)
@test -e $(sysconfdir)/classification.config || install -m 600 $(top_srcdir)/classification.config $(sysconfdir)
@test -e $(sysconfdir)/reference.config || install -m 600 $(top_srcdir)/reference.config $(sysconfdir)
install -d $(localstatedir)/log/suricata
install -d $(e_sysconfdir)
@test -e $(e_sysconfdir)/suricata.yaml || install -m 600 $(top_srcdir)/suricata.yaml $(e_sysconfdir)
@test -e $(e_sysconfdir)/classification.config || install -m 600 $(top_srcdir)/classification.config $(e_sysconfdir)
@test -e $(e_sysconfdir)/reference.config || install -m 600 $(top_srcdir)/reference.config $(e_sysconfdir)
install -d $(localstatedir)/log/suricata/files
install-rules:
install -d $(sysconfdir)/rules
wget -qO - http://rules.emergingthreats.net/open/suricata/emerging.rules.tar.gz | tar zkx -C $(sysconfdir)
@test -e $(sysconfdir)/rules/decoder-events.rules || install -m 600 $(top_srcdir)/rules/decoder-events.rules $(sysconfdir)/rules/
@test -e $(sysconfdir)/rules/stream-events.rules || install -m 600 $(top_srcdir)/rules/stream-events.rules $(sysconfdir)/rules/
@test -e $(sysconfdir)/rules/smtp-events.rules || install -m 600 $(top_srcdir)/rules/smtp-events.rules $(sysconfdir)/rules/
@test -e $(sysconfdir)/rules/http-events.rules || install -m 600 $(top_srcdir)/rules/http-events.rules $(sysconfdir)/rules/
@echo "You can now start suricata by running as root something like '$(bindir)/suricata -c $(sysconfdir)/suricata.yaml -i eth0'."
@echo "If a library like libhtp.so is not found, you can run suricata with 'LD_LIBRARY_PATH=$(prefix)/lib $(bindir)/suricata -c $(sysconfdir)/suricata.yaml -i eth0'."
install -d $(e_sysconfdir)/rules
wget -qO - http://rules.emergingthreats.net/open/suricata/emerging.rules.tar.gz | tar zkx -C $(e_sysconfdir)
@test -e $(e_sysconfdir)/rules/decoder-events.rules || install -m 600 $(top_srcdir)/rules/decoder-events.rules $(e_sysconfdir)/rules/
@test -e $(e_sysconfdir)/rules/stream-events.rules || install -m 600 $(top_srcdir)/rules/stream-events.rules $(e_sysconfdir)/rules/
@test -e $(e_sysconfdir)/rules/smtp-events.rules || install -m 600 $(top_srcdir)/rules/smtp-events.rules $(e_sysconfdir)/rules/
@test -e $(e_sysconfdir)/rules/http-events.rules || install -m 600 $(top_srcdir)/rules/http-events.rules $(e_sysconfdir)/rules/
@echo ""
@echo "You can now start suricata by running as root something like '$(bindir)/suricata -c $(e_sysconfdir)/suricata.yaml -i eth0'."
@echo ""
@echo "If a library like libhtp.so is not found, you can run suricata with:"
@echo "'LD_LIBRARY_PATH=$(prefix)/lib $(bindir)/suricata -c $(e_sysconfdir)/suricata.yaml -i eth0'."
@echo ""
@echo "While rules are installed now, it's highly recommended to use a rule manager for maintaining rules."
@echo "The two most common are Oinkmaster and Pulledpork. For a guide see:"
@echo "https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Rule_Management_with_Oinkmaster"

13
configure.in
Unescape Escape View File

@ -1202,8 +1202,8 @@ if test "$WINDOWS_PATH" = "yes"; then
;;
esac
else
EXPAND_VARIABLE(localstatedir, e_logdir, "/log/suricata")
EXPAND_VARIABLE(sysconfdir, e_sysconfdir, "/")
EXPAND_VARIABLE(localstatedir, e_logdir, "/log/suricata/")
EXPAND_VARIABLE(sysconfdir, e_sysconfdir, "/suricata/")
e_magic_file="/usr/share/file/magic"
fi
AC_SUBST(e_logdir)
@ -1245,9 +1245,12 @@ Generic build parameters:
To build and install run 'make' and 'make install'.
You can run 'make install-conf' if you want to install initial configuration files to ${e_sysconfdir}.
Running 'make install-full' will install configuration and rules and provide you a ready-to-run suricata."
You can run 'make install-conf' if you want to install initial configuration
files to ${e_sysconfdir}. Running 'make install-full' will install configuration
and rules and provide you a ready-to-run suricata."
echo
echo "To install Suricata into /usr/bin/suricata, have the config in
/etc/suricata and use /var/log/suricata as log dir, use:
./configure --prefix=/usr/ --sysconfdir=/etc/suricata/ --localstatedir=/var/log/suricata/"
./configure --prefix=/usr/ --sysconfdir=/etc/ --localstatedir=/var/"
echo

Write Preview
Loading…
Cancel
Save