UNITY 360: Issueshttp://www.prelude-siem.org/http://www.prelude-siem.org/welcome/themes/prelude/favicon/Prelude-icon.png2019-08-01T09:21:33ZUNITY 360
Redmine PRELUDE SIEM - Bug #1134 (Assigned): prewikka install on raspbianhttp://www.prelude-siem.org/issues/11342019-08-01T09:21:33ZMarc-Antoine delannoy
<p>Hello, <br />I'm trying to set up the latest version of prelude OSS on raspbian. With some effort I installed almost everything. <br />However, I have a problem with prewikka whose installation doesn't work. I have installed all the dependencies.<br />But I'm getting some errors when I run this command -> python setup.py install</p>
<pre><code class="text syntaxhl"><span class="CodeRay">root@raspberrypi:/home/prelude/prewikka-5.0.2# python setup.py install
running install
running build
running compile_catalog
error: prewikka/locale/de/LC_MESSAGES/prewikka.po:1560: placeholders are incompatible
compiling catalog prewikka/locale/de/LC_MESSAGES/prewikka.po to prewikka/locale/de/LC_MESSAGES/prewikka.mo
error: prewikka/locale/ru/LC_MESSAGES/prewikka.po:47: unknown named placeholder u'value'
error: prewikka/locale/ru/LC_MESSAGES/prewikka.po:162: unknown named placeholder u'version'
error: prewikka/locale/ru/LC_MESSAGES/prewikka.po:1593: placeholders are incompatible
compiling catalog prewikka/locale/ru/LC_MESSAGES/prewikka.po to prewikka/locale/ru/LC_MESSAGES/prewikka.mo
error: prewikka/locale/pl/LC_MESSAGES/prewikka.po:1587: placeholders are incompatible
error: prewikka/locale/pl/LC_MESSAGES/prewikka.po:1870: placeholders are incompatible
compiling catalog prewikka/locale/pl/LC_MESSAGES/prewikka.po to prewikka/locale/pl/LC_MESSAGES/prewikka.mo
error: prewikka/locale/es/LC_MESSAGES/prewikka.po:1554: placeholders are incompatible
error: prewikka/locale/es/LC_MESSAGES/prewikka.po:2126: placeholders are incompatible
error: prewikka/locale/es/LC_MESSAGES/prewikka.po:2226: placeholders are incompatible
error: prewikka/locale/es/LC_MESSAGES/prewikka.po:2231: placeholders are incompatible
compiling catalog prewikka/locale/es/LC_MESSAGES/prewikka.po to prewikka/locale/es/LC_MESSAGES/prewikka.mo
error: prewikka/locale/pt_BR/LC_MESSAGES/prewikka.po:1546: placeholders are incompatible
error: prewikka/locale/pt_BR/LC_MESSAGES/prewikka.po:2119: placeholders are incompatible
compiling catalog prewikka/locale/pt_BR/LC_MESSAGES/prewikka.po to prewikka/locale/pt_BR/LC_MESSAGES/prewikka.mo
compiling catalog prewikka/locale/fr/LC_MESSAGES/prewikka.po to prewikka/locale/fr/LC_MESSAGES/prewikka.mo
error: prewikka/locale/it/LC_MESSAGES/prewikka.po:43: unknown named placeholder u'value'
error: prewikka/locale/it/LC_MESSAGES/prewikka.po:1550: placeholders are incompatible
compiling catalog prewikka/locale/it/LC_MESSAGES/prewikka.po to prewikka/locale/it/LC_MESSAGES/prewikka.mo
compiling catalog prewikka/locale/en/LC_MESSAGES/prewikka.po to prewikka/locale/en/LC_MESSAGES/prewikka.mo
running build_custom
compiling ['themes/dark.less', 'prewikka/htdocs/css/style.less'] -> prewikka/htdocs/css/themes/dark.css
error: [Errno 2] No such file or directory
</span></code></pre>
<p>there is a problem with languages. The second problem I guess it is: prewikka/htdocs/css/themes/dark.css that is not found.<br />Package installation does not seem possible in version 5 for a debian-based distribution (4 is the last version i found).</p>
<p>Do you have any idea how to solve this?<br />Regards</p> PRELUDE SIEM - Bug #1093 (Assigned): prelude-admin Segmentation Fault raspbianhttp://www.prelude-siem.org/issues/10932019-05-06T12:16:55ZMarc-Antoine delannoy
<p>Hello,<br />I am trying to run the libprelude on a raspberry pi to use suricata with the prelude alert format.<br />I download the libprelude-5.0.0.tar.gz and decompress the archive.<br />then:<br /><code><br />./configure<br />make<br />make install<br />LD_LIBRARY_PATH=/usr/local/lib<br />export LD_LIBRARY_PATH<br /></code><br />and when i try to use prelude-admin without argument it works and displays the help message.<br />But if for example i try prelude-admin list it returns a segmentation fault.<br />Same for any argument.</p>
<p>And if i run make check<br />I have 4 errors.<br />the end of the output is:<br /><pre>
make check-TESTS check-local
make[3]: Entering directory '/home/suricata/libprelude-5.0.0/tests'
make[4]: Entering directory '/home/suricata/libprelude-5.0.0/tests'
../test-driver: line 95: 26741 Segmentation fault "$@" > $log_file 2>&1
FAIL: async-timer
PASS: idmef
../test-driver: line 95: 26789 Aborted "$@" > $log_file 2>&1
FAIL: idmef-criteria
PASS: idmef-message-helper
PASS: idmef-path
PASS: idmef-value
../test-driver: line 95: 26885 Segmentation fault "$@" > $log_file 2>&1
FAIL: prelude-client
PASS: prelude-string
../test-driver: line 95: 26933 Segmentation fault "$@" > $log_file 2>&1
FAIL: prelude-timer
make[5]: Entering directory '/home/suricata/libprelude-5.0.0/tests'
make[5]: Nothing to be done for 'all'.
make[5]: Leaving directory '/home/suricata/libprelude-5.0.0/tests'
============================================================================
Testsuite summary for libprelude 5.0.0
============================================================================
# TOTAL: 9
# PASS: 5
# SKIP: 0
# XFAIL: 0
# FAIL: 4
# XPASS: 0
# ERROR: 0
============================================================================
See tests/test-suite.log
============================================================================
Makefile:1881: recipe for target 'test-suite.log' failed
make[4]: *** [test-suite.log] Error 1
make[4]: Leaving directory '/home/suricata/libprelude-5.0.0/tests'
Makefile:1987: recipe for target 'check-TESTS' failed
make[3]: *** [check-TESTS] Error 2
make[3]: Leaving directory '/home/suricata/libprelude-5.0.0/tests'
Makefile:2117: recipe for target 'check-am' failed
make[2]: *** [check-am] Error 2
make[2]: Leaving directory '/home/suricata/libprelude-5.0.0/tests'
Makefile:1669: recipe for target 'check-recursive' failed
make[1]: *** [check-recursive] Error 1
make[1]: Leaving directory '/home/suricata/libprelude-5.0.0'
Makefile:1954: recipe for target 'check' failed
make: *** [check] Error 2
</pre></p>
<p>Do you have any idea how to solve this?</p>
<p>Regards</p> PRELUDE SIEM - Bug #1082 (Assigned): Problem to register my IDS (Suricata) on Prelude OSShttp://www.prelude-siem.org/issues/10822019-04-12T08:13:59ZMarc-Antoine delannoy
<p>Hi,<br />I have a problem to register my IDS (Suricata) on Prelude OSS. My IDS is on the same network but in a different CentOs VM. The prelude address is 192.168.0.2 and the IDS address is 192.168.0.3<br />I already installed from source : prelude-manager, prelude lml (not used), prelude-admin and libpreludedb. I configured the /usr/local/etc/prelude/default/client.conf<br /> to change the server-addr=127.0.0.1 to server-addr=192.168.0.2<br />Same for prelude-manager.conf with listen = 192.168.0.2:5553<br />I verify the connection between my IDS and my Prelude with a ping.<br />Then I enter the command line on the prelude machine :<br /> prelude-admin registration-server prelude-manager<br />and on the IDS :</p>
<p>prelude-admin register suricata "idmef:w admin:r" 192.168.0.2 –uid 1000 –gid 1500</p>
<p>I copy the one shot password but get this error message on my IDS :<br />Connecting to registration server (192.168.0.2 :5553)<br />Could not connect to 192.168.0.2 port 5553 : No route to host<br />So I scan my port and the number 5553 remains closed throughout all the process. <br />I may have missed a command line or configuration, so i reread the whole doc but I didn’t found anything about it.</p>
<p>Do you have any suggestions?</p>
<p>Thanks.</p> Prewikka - Support #1031 (Assigned): Authentication errorhttp://www.prelude-siem.org/issues/10312019-01-06T17:29:51ZRobin IRLINGER
<p>Hi,</p>
<p>I've a trouble with Auth in Prewikka. It's impossible to enable [auth loginpassword] in /etc/prewikka/prewikka.conf: "Cannot use auth mode 'loginpassword', please contact your local administrator". (cf. print screen)</p>
<p>Do you have any suggestions ?</p>
<p>Thanks.</p>
<p>Robin</p> Libprelude - Bug #860 (Assigned): Fedora : ruby sitearchdir need to be vendorarchdirhttp://www.prelude-siem.org/issues/8602016-10-31T21:33:18ZThomas ANDREJAKthomas.andrejak@csgroup.eu
<p>On Fedora, sitearchdir is not defined, so ruby "so" file go to /usr/local.</p>
<p>On Fedora it is vendorarchdir</p>