Mac OS X Yosemite(10.10.2)
Postgresql 9.4.1(使用 Homebrew 安装)
Snort 2.9.7.0(使用 Homebrew 安装)
我无法连接到 psql-端口 5432 似乎已关闭:
$ psql postgres
psql: could not connect to server: No such file or directory
Is the server running locally and accepting
connections on Unix domain socket "/tmp/.s.PGSQL.5432"?
$nmap -p 5432 localhost
Starting Nmap 6.47 ( http://nmap.org ) at 2015-03-03 15:51 PST
Nmap scan report for localhost (127.0.0.1)
Host is up (0.00013s latency).
PORT STATE SERVICE
5432/tcp closed postgresql
Nmap done: 1 IP address (1 host up) scanned in 0.02 seconds
我尝试用 lunchy 重新启动 postgresql,但没有帮助:
$ lunchy stop postgres
$ lunchy start postgres
service.log显示:
LOG: specifying both host name and CIDR mask is invalid: "snort-sensor-host-ip/32"
CONTEXT: line 95 of configuration file "/usr/local/var/postgres/pg_hba.conf"
FATAL: could not load pg_hba.conf
因此显然它不喜欢 pg_hba.conf 中的这一行:
host snort snort snort-sensor-host-ip/32 password
但为什么?
我按照这个教程添加的:https://discussions.apple.com/thread/3370709?start=0&tstart=0
当我评论此行时 - 它有效,但我的 Snort 无效: OSX:Snort:错误:/etc/snort/../rules/local.rules(0) 无法打开规则文件“/etc/snort/../rules/local.rules”:没有此文件或目录
答案1
正确答案(由 Daniel Vérité 回答):关于 中的行pg_hba.conf:snort-sensor-host-ip不能逐字复制,它应该被替换为 snort 连接所来自的 IP 地址。如果 snort 和 postgres 在同一台机器上,您可以使用127.0.0.1并配置 snort 以通过 连接到 postgres 127.0.0.1。