"That which is overdesigned, too highly specific, anticipates outcome; the anticipation of outcome guarantees, if not failure, the absence of grace."
-- William Gibson, All Tomorrow's Parties
Installing Snort on OpenBSD

Just wrote a very bare-bones HOWTO (if you can even call it that) for installing Snort on OpenBSD 3.5.

Harry brought up the uid issue (my useradd statement will just add _snort as a user, and not within the daemon uid range, typically the 500s), so I checked out Postfix's pkg INSTALL script:

useradd \
-g =uid \
-c "Postfix Daemon" \
-d /nonexistent \
-s /sbin/nologin \
-u 507 _postfix

The fact that it's hard-coded suggests to me that there's a daemon to uid map for OpenBSD somewhere, but I'll be damned if I know how to find it.

I'll ask mjc (a fellow metawire.org admin and OpenBSD monkey).

May 26, 2004 10:55 AM
Comments

Via mjc:

/usr/ports/infrastructure/db/user.list

snort isn't listed, so I assume I'd have to contact the snort port maintainer, and ask that he allocate a uid or something.

Posted by: bda at May 26, 2004 12:41 PM
Post a comment









Remember personal info?