Comments on: How to run snort as a non-root user http://blog.bodhizazen.net/linux/how-to-run-snort-as-a-non-root-user/ A LAMP in the Samsara Tue, 31 Jan 2012 20:20:11 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: bodhi.zazen http://blog.bodhizazen.net/linux/how-to-run-snort-as-a-non-root-user/comment-page-1/#comment-407 bodhi.zazen Tue, 03 Mar 2009 16:20:00 +0000 http://bodhizazen.net/bzblog/?p=10#comment-407 Thank you for your comments Charles. Your comments about adding the user snort to the group snort are right on target. With the logs, it depends. Personally I keep the logs owned by root with snort as the group, but that is a matter of style. Your comments offer an alternate choice and are appreciated. Thank you for your comments Charles.

Your comments about adding the user snort to the group snort are right on target.

With the logs, it depends. Personally I keep the logs owned by root with snort as the group, but that is a matter of style.

Your comments offer an alternate choice and are appreciated.

]]> By: Charles http://blog.bodhizazen.net/linux/how-to-run-snort-as-a-non-root-user/comment-page-1/#comment-406 Charles Tue, 03 Mar 2009 14:39:59 +0000 http://bodhizazen.net/bzblog/?p=10#comment-406 You must create the group snort (not all distros create automatically a group only for the user, but they associate it to a generic group, like 'users') by typng: groupadd snort usermod -G snort snort And the step "give snort permission to write to the log file" should be (unless you created the group before): chmod -R u+w /var/log/snort You must create the group snort (not all distros create automatically a group only for the user, but they associate it to a generic group, like ‘users’) by typng:
groupadd snort
usermod -G snort snort

And the step “give snort permission to write to the log file” should be (unless you created the group before):
chmod -R u+w /var/log/snort

]]>