From owner-freebsd-questions@FreeBSD.ORG  Sat Jan 28 22:32:54 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B156816A420
	for <freebsd-questions@freebsd.org>;
	Sat, 28 Jan 2006 22:32:54 +0000 (GMT)
	(envelope-from drew@mykitchentable.net)
Received: from relay01.roc.ny.frontiernet.net (relay01.roc.ny.frontiernet.net
	[66.133.182.164])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C106343D49
	for <freebsd-questions@freebsd.org>;
	Sat, 28 Jan 2006 22:32:53 +0000 (GMT)
	(envelope-from drew@mykitchentable.net)
Received: from blacklamb.mykitchentable.net
	(70-97-220-126.dsl2.elk.ca.frontiernet.net [70.97.220.126])
	by relay01.roc.ny.frontiernet.net (Postfix) with ESMTP id E97B9364155
	for <freebsd-questions@freebsd.org>;
	Sat, 28 Jan 2006 22:32:52 +0000 (UTC)
Received: from [192.168.1.30] (unknown [192.168.1.30])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by blacklamb.mykitchentable.net (Postfix) with ESMTP id E5BEEAE1B2
	for <freebsd-questions@freebsd.org>;
	Sat, 28 Jan 2006 14:32:51 -0800 (PST)
Message-ID: <43DBF113.4050303@mykitchentable.net>
Date: Sat, 28 Jan 2006 14:32:51 -0800
From: Drew Tomlinson <drew@mykitchentable.net>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: FreeBSD Questions <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new-2.3.2 (20050629) at
	filter08.roc.ny.frontiernet.net
Subject: Snort - Separate Sensor and Data Collector Boxes?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 28 Jan 2006 22:32:54 -0000

I want to learn about Snort and started Googling.  I found a couple of 
docs that indicate I can install Snort on a "sensor" box and then run 
ACID, Apache, MySQL, etc. on a "data collector" box.  Am I understanding 
correctly?

The box I want to use as the "data collector" already has all the 
requirements except ACID.  I used 'portinstall' and it wants to pull in 
Snort as a dependency.  If my understanding above is correct, how can I 
tell the ACID port not to pull in Snort?

Also any recommendations for newbie docs for learning about this would 
be appreciated.

Thanks,

Drew

-- 
Visit The Alchemist's Warehouse
Magic Tricks, DVDs, Videos, Books, & More!

http://www.alchemistswarehouse.com