Honeypots mailing list archives
snort-inline segfault with -b
From: Katriel Traum <katriel () traum org il>
Date: Fri, 21 Feb 2003 19:08:21 +0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello list, I've been trying to use snort as a GIDS with snort-inline. When trying to run snort in inline mode (-Q) along side with tcpdump logging (-b), I get a segfault (same goes when trying output log_tcpdump: /var/log/snort/tcpdump.log) I've run it through "gdb", and found out that it segfaults at a function called pcap_dump_open(), which after checking is the function that opens the pcap dump file. When running snort-inline with only -b or only -Q, nothing happens. Anyone else using snort-inline for data-capture/control? Has anyone seen or experienced something like this? Thanks, - -- +katriel pgp key: traum.org.il/gpg.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+VnkoDWy+Hv/461sRArdxAKCyiTtLpdTpQlJjxVwcJDgCs8DpXQCgrDRO mdNB/uBKG8tqgCpIyTrGClc= =mkVe -----END PGP SIGNATURE-----
Current thread:
- snort-inline segfault with -b Katriel Traum (Feb 21)
- Re: snort-inline segfault with -b Rob McMillen (Feb 21)