Install Instructions for Fedora 15 - Snorby/snorby GitHub Wiki
Install Ruby 1.9.2, Rails 3, an SQL server on Fedora.
We are going to need to install required files to compile Ruby
sudo yum install ruby
I went to '/usr/local/src/' and downloaded snorby. It could be in a better directory, like the Ubuntu writeup that uses '/var/www/apps/snorby/snorby/'.
cd /usr/local/src/
sudo git clone git://github.com/Snorby/snorby.git
sudo chown user:user snorby/
Install Gem Dependencies (we already installed bundler earlier)
cd snorby/
sudo yum install libxml2-devel libxslt-devel ImageMagick-devel
bundle install
Edit config/database.yml to match your database server settings. Adapter will likely be either 'mysql' or 'postgres'.
Run the database migration script:
rake snorby:setup
If you receive something like the following error, check your credentials in db/database.yml:
ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES) rake aborted! Access denied for user 'root'@'localhost' (using password: YES)
If you want to change the IP that the management interface or the port, edit config/snorby_config.yml
gedit snorby/config/snorby_config.yml
Edit The Snorby Mail Configurations
gedit snorby/config/initializers/mail_config.rb
Once all options have been configured we can now try and start it up. From the base Snorby dir run:
rails server
Make sure you start the Snorby Worker from the Administration page. Or if that fails to start the worker, we can start it by hand by a couple ways listed bellow.
ruby script/delayed_job start rails runner 'Snorby::Jobs::SensorCacheJob.new(false).perform; Snorby::Jobs::DailyCacheJob.new(false).perform'
or
rails c Loading development environment (Rails 3.0.3) irb(main):001:0>Snorby::Worker.start irb(main):002:0>Snorby::Jobs::SensorCacheJob.new(false).perform; irb(main):003:0>Snorby::Jobs::DailyCacheJob.new(false).perform
Note: If your sensor is not listed under sensors restart Snort and it should show up.