[Snort-devel] core dump

Cove Schneider cove at ...46...
Thu Jul 19 19:35:00 EDT 2001


Sorry this is sort of messy...

System Architecture (Sparc, x86, etc)
x86

Operating System and version (Linux 2.0.22, IRIX 5.3, etc)
FreeBSD rommel.clearink.net 4.2-RELEASE FreeBSD 4.2-RELEASE #0: Thu Mar  1 13:43:32 PST 2001     cove at ...547...:/usr/src/sys/compile/ROMMEL  i386

What rules (if any) you were using
all default rules.

What command line switches you were using
-c <config.file>

also using mysql  Ver 11.12 Distrib 3.23.32, for -freebsd4.2 (i386),
with ACID.

Any Snort error messages

(root) rommel:~snort/etc# /var/ci/export/build/freebsd/snort/snort-1.8p1/snort -c ~snort/etc/snort.conf

        --== Initializing Snort ==--
Checking PID path...
PATH_VARRUN is set to /var/run/ on this operating system

Initializing Network Interface xl0
Decoding Ethernet on interface xl0
Initializing Preprocessors!
Initializing Plug-ins!
Initializating Output Plugins!
Parsing Rules file /home/snort/etc/snort.conf

+++++++++++++++++++++++++++++++++++++++++++++++++++
Initializing rule chains...
No arguments to stream4 directive, setting defaults to:
    Session timeout: 30 seconds
    Session memory cap: 8388608 bytes
    Stateful Inspection: ACTIVE
    Stream Reassembly: INACTIVE
    Stream Stats: INACTIVE
    State Alerts: ACTIVE
No arguments to stream4_reassemble, setting defaults:
     Reassemble client: ACTIVE
     Reassemble server: INACTIVE
     Reassemble ports: 21 23 25 53 80 143 110 111 513
     Reassembly alerts: ACTIVE
Back Orifice detection brute force: DISABLED
Using LOCAL time
database: compiled support for ( mysql )
database: configured to use mysql
database:          user = snort
database: database name = snort
database:   sensor name = 205.227.191.94
zsh: 71153 bus error (core dumped)  /var/ci/export/build/freebsd/snort/snort-1.8p1/snort -c ~snort/etc/snort.conf


bt:

#0  0x880eda18 in mysql_real_connect ()
   from /usr/local/lib/mysql/libmysqlclient.so.10
(gdb) bt
#0  0x880eda18 in mysql_real_connect ()
   from /usr/local/lib/mysql/libmysqlclient.so.10
#1  0x805ebf1 in Connect (data=0x80d2540) at spo_database.c:1383
#2  0x805d3df in DatabaseInit (args=0x80d2500 "log") at spo_database.c:140
#3  0x8053d50 in ParseOutputPlugin (
    rule=0xbfbfd3c0 "output database: log, mysql, user=snort dbname=snort")
    at rules.c:1416
#4  0x805344f in ParseRule (rule_file=0x8827d4c0, 
    prule=0xbfbff470 "output database: log, mysql, user=snort dbname=snort", 
    inclevel=0) at rules.c:548
#5  0x8052f97 in ParseRulesFile (file=0x80913d4 "/home/snort/etc/snort.conf", 
    inclevel=0) at rules.c:201
#6  0x804b0b8 in main (argc=3, argv=0xbfbff904) at snort.c:309
#7  0x804abf1 in _start ()






More information about the Snort-devel mailing list