[Snort-users] Error compiling snort with snortsam

Castle, Shane scastle at ...14946...
Wed Apr 17 11:43:48 EDT 2013


Snortsam is no longer supported as an output module on Snort. Use Barnyard2, which has snortsam support built-in. In fact, the only two output options for Snort any more are the unified2 output and syslog, I understand. BY2 will read the unified2 output and do all the cool things for output that used to be built into snort.

This change is now so old that it's unlikely that any of the Snort folks will respond.

-- 
Shane Castle
Data Security Mgr, Boulder County IT

-----Original Message-----
From: Ashraf Ali [mailto:ashrafali.ibs at ...11827...] 
Sent: Wednesday, April 17, 2013 01:10
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Error compiling snort with snortsam

Hi All



i just compiled snortsam with snort 2.9.4.5 , and run ./configure in snort folder  , it went fine , but when i run make , its showing the following errors.

../../src/twofish.h:251:15: note: expected 'char *' but argument is of type 'unsigned char *'
spo_alert_fwsam.c:1293:5: warning: passing argument 2 of 'TwoFishDecrypt' from incompatible pointer type [enabled by default]
In file included from spo_alert_fwsam.h:38:0,
                 from spo_alert_fwsam.c:109:
../../src/twofish.h:251:15: note: expected 'char **' but argument is of type 'unsigned char **'
spo_alert_fwsam.c:1320:7: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
spo_alert_fwsam.c:1325:6: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
spo_alert_fwsam.c:1330:5: error: incompatible type for argument 1 of 'sfip_to_str'
In file included from ../../src/ipv6_port.h:28:0,
                 from ../../src/decode.h:51,
                 from ../../src/spo_plugbase.h:30,
                 from ../../src/snort.h:35,
                 from spo_alert_fwsam.h:32,
                 from spo_alert_fwsam.c:109:
../../src/sfutil/sf_ip.h:503:7: note: expected 'const struct sfip_t *' but argument is of type 'struct in_addr'
make[3]: *** [spo_alert_fwsam.o] Error 1
make[3]: Leaving directory `/usr/src/snort-2.9.4.5/src/output-plugins'
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory `/usr/src/snort-2.9.4.5/src'
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory `/usr/src/snort-2.9.4.5'
make: *** [all] Error 2




Pls help in resolving the issue.


Regards,
Ashraf





More information about the Snort-users mailing list