Re: Barnyard2 issue w/unified2 ?

[beenph <beenph () gmail com>]

I would highly suggest you that you
re-create a new DB with InnoDB and restart your barnyard2 sensor.

Also which version of by2 are you running?

-elz


On Fri, Aug 9, 2013 at 10:46 PM, Jeff Kell <jeff-kell () utc edu> wrote:
> mysql> SELECT table_name,engine FROM INFORMATION_SCHEMA.TABLES WHERE
>     -> table_schema=DATABASE();
> +------------------+--------+
> | table_name       | engine |
> +------------------+--------+
> | acid_ag          | MyISAM |
> | acid_ag_alert    | MyISAM |
> | acid_event       | MyISAM |
> | acid_ip_cache    | MyISAM |
> | base_roles       | MyISAM |
> | base_users       | MyISAM |
> | data             | MyISAM |
> | detail           | MyISAM |
> | encoding         | MyISAM |
> | event            | MyISAM |
> | icmphdr          | MyISAM |
> | iphdr            | MyISAM |
> | opt              | MyISAM |
> | reference        | MyISAM |
> | reference_system | MyISAM |
> | schema           | MyISAM |
> | sensor           | MyISAM |
> | sig_class        | MyISAM |
> | sig_reference    | MyISAM |
> | signature        | MyISAM |
> | tcphdr           | MyISAM |
> | udphdr           | MyISAM |
> +------------------+--------+
> 22 rows in set (0.00 sec)
>
> mysql>
>
>
> On 8/9/2013 10:44 PM, beenph wrote:
> > On Fri, Aug 9, 2013 at 10:34 PM, Jeff Kell <jeff-kell () utc edu> wrote:
> > > It's a classic BASE MySQL instance.  BASE is using adodb5.  As for the
> > > schema...  umm...  I've slept a few times since creating the DB :)
> > Execute this query and look if your storage engine is set to InnoDB or MyIASM.
> >
> > <SNIP>
> > SELECT table_name,engine FROM INFORMATION_SCHEMA.TABLES WHERE
> > table_schema=DATABASE(); )
> > </SNIP>
> >
> >
> > > Jeff
> > >
> > > On 8/9/2013 10:26 PM, beenph wrote:
> > > > On Fri, Aug 9, 2013 at 9:06 PM, Jeff Kell <jeff-kell () utc edu> wrote:
> > > > > Getting a rash of these recently... causes barnyard2 to abort, and only
> > > > > way to "obviously" clear is to go to the database and "delete from
> > > > > sig_reference";
> > > > >
> > > > > > Aug  9 20:55:03 snort-dorms barnyard2[11053]: FATAL ERROR: database
> > > > > > mysql_error: Duplicate entry '167807-1' for key
> > > > > > 'PRIMARY'#012#011SQL=[INSERT INTO sig_reference
> > > > > > (ref_id,sig_id,ref_seq) VALUES ('132475','167807','1');]
> > > > > > Aug  9 20:55:03 snort-dorms barnyard2[11053]: Barnyard2 exiting
> > > > > Have also had it recur after the "delete" reset of the table.
> > > > >
> > > > > We have 8 snort/barnyard2 instances running across multiple sensors, not
> > > > > sure if that's relevant.
> > > > Which version of barnyard2 are you running?
> > > > Are you logging to a InnoDB or MyIASM schema?
> > > >
> > > > -elz

------------------------------------------------------------------------------
Get 100% visibility into Java/.NET code with AppDynamics Lite!
It's a free troubleshooting tool designed for production.
Get down to code-level detail for bottlenecks, with <2% overhead. 
Download for free and get started troubleshooting in minutes. 
http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!