Re: Error compiling snort with snortsam

["Castle, Shane" <scastle () bouldercounty org>]

Snortsam is no longer supported as an output module on Snort. Use Barnyard2, which has snortsam support built-in. In 
fact, the only two output options for Snort any more are the unified2 output and syslog, I understand. BY2 will read 
the unified2 output and do all the cool things for output that used to be built into snort.

This change is now so old that it's unlikely that any of the Snort folks will respond.

-- 
Shane Castle
Data Security Mgr, Boulder County IT

-----Original Message-----
From: Ashraf Ali [mailto:ashrafali.ibs () gmail com] 
Sent: Wednesday, April 17, 2013 01:10
To: snort-users () lists sourceforge net
Subject: [Snort-users] Error compiling snort with snortsam

Hi All



i just compiled snortsam with snort 2.9.4.5 , and run ./configure in snort folder  , it went fine , but when i run make 
, its showing the following errors.

../../src/twofish.h:251:15: note: expected 'char *' but argument is of type 'unsigned char *'
spo_alert_fwsam.c:1293:5: warning: passing argument 2 of 'TwoFishDecrypt' from incompatible pointer type [enabled by 
default]
In file included from spo_alert_fwsam.h:38:0,
                 from spo_alert_fwsam.c:109:
../../src/twofish.h:251:15: note: expected 'char **' but argument is of type 'unsigned char **'
spo_alert_fwsam.c:1320:7: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
spo_alert_fwsam.c:1325:6: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
spo_alert_fwsam.c:1330:5: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
make[3]: *** [spo_alert_fwsam.o] Error 1
make[3]: Leaving directory `/usr/src/snort-2.9.4.5/src/output-plugins'
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory `/usr/src/snort-2.9.4.5/src'
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory `/usr/src/snort-2.9.4.5'
make: *** [all] Error 2




Pls help in resolving the issue.


Regards,
Ashraf


------------------------------------------------------------------------------
Precog is a next-generation analytics platform capable of advanced
analytics on semi-structured data. The platform includes APIs for building
apps and a phenomenal toolset for data science. Developers can use
our toolset for easy data analysis & visualization. Get a free account!
http://www2.precog.com/precogplatform/slashdotnewsletter
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!