Project

General

Profile

Bug #529

prelude-lml: Segmentation fault

Added by oeslei taborda ribas over 6 years ago. Updated about 3 years ago.

Status:
Closed
Priority:
High
Start date:
12/31/2012
Due date:
% Done:

0%

Resolution:

Description

I found a problem in prelude-lml in FreeBSD. I did the installation of freebsd 9.0 version and installed prelude using pkg_add, but the service didn't start and sent a "Segmentation fault" error. I found that the cause of the problem is the lack of entry of server name in the "/etc/hosts" file, when there is no such entry the prelude can not resolve the name and not start. It would be interesting to solve this problem or send an error message more user friendly advising that there is no entry in the hosts file, with the current message is almost impossible to discover the real cause of the problem.

Below follow the log of commands executed:

  1. Here I comment the host entry for sserver00022 in /etc/hosts
    sserver00022# grep sserver00022 /etc/hosts
    #10.1.10.21 sserver00022.domain.private sserver00022
    #10.1.10.21 sserver00022.domain.private.
    sserver00022#
    sserver00022# /usr/local/bin/prelude-lml --prelude --profile=lml.sserver00022b -d -P /var/run/prelude-lml.pid
    Segmentation fault (core dumped)
    sserver00022#
    sserver00022# tail -1 /var/log/messages
    Dec 31 10:53:41 sserver00022 kernel: pid 69441 (prelude-lml), uid 0: exited on signal 11 (core dumped)
    sserver00022# ps -auxwww | grep -i prelude root 69464 0.0 0.0 16424 1516 1 S+ 10:54AM 0:00.00 grep -i prelude
    sserver00022#
  1. Here I remove the comment for entry sserver00022 in /etc/hosts
    sserver00022# vi /etc/hosts
    sserver00022# grep sserver00022 /etc/hosts
    10.1.10.21 sserver00022.domain.private sserver00022
    10.1.10.21 sserver00022.domain.private.
    sserver00022# /usr/local/bin/prelude-lml --prelude --profile=lml.sserver00022b -d -P /var/run/prelude-lml.pid
    sserver00022#
    sserver00022# ps -auxwww | grep -i prelude root 69471 0.0 0.1 48572 6384 ?? Ss 10:54AM 0:00.01 /usr/local/bin/prelude-lml --prelude --profile=lml.sserver00022b -d -P /var/run/prelude-lml.pid
    root 69473 0.0 0.0 16424 1516 1 S+ 10:54AM 0:00.00 grep -i prelude
    sserver00022#

###version
sserver00022# uname -a
FreeBSD sserver00022 9.0-RELEASE-p5 FreeBSD 9.0-RELEASE-p5 #0: Fri Dec 28 19:32:31 BRST 2012 root@sserver00022:/usr/obj/usr/src/sys/IPFWKERNEL amd64
sserver00022#
sserver00022# pkg_info | grep prelude
libprelude-0.9.24.1_1 Framework library for Prelude NIDS
prelude-lml-0.9.15 Prelude Network Intrusion Detection System Log Monitoring L
sserver00022#
sserver00022# /usr/local/bin/prelude-lml -version
prelude-lml-0.9.15
sserver00022#

History

#1 Updated by Antoine LUONG over 6 years ago

This should be moved to the Prelude-LML section.

#2 Updated by Jean-Charles ROGEZ almost 6 years ago

  • Project changed from Prewikka to Prelude-LML

#3 Updated by Jean-Charles ROGEZ almost 6 years ago

  • Target version set to 121

#4 Updated by Thomas ANDREJAK almost 5 years ago

  • Assignee set to Thomas ANDREJAK

is it steel the case with the lastest version of Prelude ?

#5 Updated by Thomas ANDREJAK almost 4 years ago

  • Target version changed from 121 to Prelude OSS 3.0.0

#6 Updated by Thomas ANDREJAK over 3 years ago

  • Target version changed from Prelude OSS 3.0.0 to Prelude OSS 3.1.0

#7 Updated by Thomas ANDREJAK about 3 years ago

  • Status changed from New to Closed

closed due to inactivity

Also available in: Atom PDF