[Snort-users] Pulled pork: A 500 error - root certificates

Andrew Shagayev drewshg at ...11827...
Thu Mar 12 01:41:43 EDT 2015


Hi all!
Trying to run pulled pork on mac os x yosemite
Snort 2.9.7.0
Pulled Pork 0.7.0

*$ sudo pulledpork.pl <http://pulledpork.pl> -vv -c
/usr/local/etc/pulledpork/pulledpork.conf*

    http://code.google.com/p/pulledpork/
      _____ ____
     `----,\    )
      `--==\\  /    PulledPork v0.7.0 - Swine Flu!
       `--==\\/
     .-~~~~-.Y|\\_  Copyright (C) 2009-2013 JJ Cummings
  @_/        /  66\_  cummingsj at ...11827...
    |    \   \   _(")
     \   /-| ||'--'  Rules give me wings!
      \_\  \_\\
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Config File Variable Debug /usr/local/etc/pulledpork/pulledpork.conf
    local_rules = /usr/local/etc/snort/rules/local.rules
    IPRVersion = /usr/local/etc/snort/rules/iplists
    distro = FreeBSD-8.1
    snort_path = /usr/local/bin/snort
    sid_msg_version = 1
    rule_path = /usr/local/etc/snort/rules/snort.rules
    ignore = deleted.rules,experimental.rules,local.rules
    sid_changelog = /var/log/sid_changes.log
    version = 0.7.0
    temp_path = /tmp
    snort_control = /usr/local/bin/snort_control
    rule_url = ARRAY(0x7f905dd47760)
    sid_msg = /usr/local/etc/snort/sid-msg.map
    sorule_path = /usr/local/lib/snort_dynamicrules/
    black_list = /usr/local/etc/snort/rules/iplists/default.blacklist
    config_path = /usr/local/etc/snort/snort.conf
MISC (CLI and Autovar) Variable Debug:
    arch Def is: X86-64
    Config Path is: /usr/local/etc/pulledpork/pulledpork.conf
    Distro Def is: FreeBSD-8.1
    Disabled policy specified
    local.rules path is: /usr/local/etc/snort/rules/local.rules
    Rules file is: /usr/local/etc/snort/rules/snort.rules
    sid changes will be logged to: /var/log/sid_changes.log
    sid-msg.map Output Path is: /usr/local/etc/snort/sid-msg.map
    Snort Version is: 2.9.7.0
    Snort Config File: /usr/local/etc/snort/snort.conf
    Snort Path is: /usr/local/bin/snort
    SO Output Path is: /usr/local/lib/snort_dynamicrules/
    Will process SO rules
    Extra Verbose Flag is Set
    Verbose Flag is Set
    Base URL is:
https://www.snort.org/reg-rules/|snortrules-snapshot.tar.gz|44146283d5bb770b010082666768b9c083bfdb02
http://s3.amazonaws.com/snort-org/www/rules/community/|community-rules.tar.gz|Community
http://labs.snort.org/feeds/ip-filter.blf|IPBLACKLIST|open
https://www.snort.org/reg-rules/|opensource.gz|44146283d5bb770b010082666768b9c083bfdb02
Checking latest MD5 for snortrules-snapshot-2970.tar.gz....
    Fetching md5sum for: snortrules-snapshot-2970.tar.gz.md5
** GET
https://www.snort.org/reg-rules/snortrules-snapshot-2970.tar.gz.md5/44146283d5bb770b010082666768b9c083bfdb02
==> 200 OK
    most recent rules file digest: a59e8a684f9fdaced210a96b4f771f24
Rules tarball download of snortrules-snapshot-2970.tar.gz....
    Fetching rules file: snortrules-snapshot-2970.tar.gz
** GET
https://www.snort.org/reg-rules/snortrules-snapshot-2970.tar.gz/44146283d5bb770b010082666768b9c083bfdb02
==> 302 Found (1s)
** GET
https://s3.amazonaws.com/snort-org-site/production/release_files/files/000/001/435/original/snortrules-snapshot-2970.tar.gz?AWSAccessKeyId=AKIAIXACIED2SPMSC7GA&Expires=1426141330&Signature=nq4StuG6fQ733l4x0abmuAfYXfE%3D
==> 500 Can't connect to s3.amazonaws.com:443 (certificate verify failed)
    A 500 error occurred, please verify that you have recently updated your
root certificates!


*Any ideas???*
*Please, any help appreciated*
-- 
A.S.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20150311/4555d85e/attachment.html>


More information about the Snort-users mailing list