ports/102909: Snort 2.6.0 port dynamic location problem

[ Available lists | Index of freebsd-ports-bugs | Month of Sep 2006 | Week of 5 Sep 2006 | Raw email | View thread | Wrap long lines | Reply ]
From
Richard Bejtlich <taosecurity@gmail.com>
Date
5 Sep 2006 15:23:40
Subject
ports/102909: Snort 2.6.0 port dynamic location problem
Message-ID
200609051504.k85F4T4u019508@www.freebsd.org


[ Hide this part ] 
 
>Number:         102909
>Category:       ports
>Synopsis:       Snort 2.6.0 port dynamic location problem
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:
>Keywords:
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue Sep 05 15:10:18 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator:     Richard Bejtlich
>Release:        6.1 RELEASE
>Organization:
TaoSecurity
>Environment:
FreeBSD sensor 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Sun May  7 04:42:56 UTC 2006     root@opus.cse.buffalo.edu:/usr/obj/usr/src/sys/SMP  i386
>Description:
The pkg_plist for Snort 2.6.0 is incorrectly specified.
 
# snort -T
..edited...
 
Loading dynamic engine /usr/local/lib/snort_dynamicengine/libsf_engine.so... ERROR: Failed to load /usr/local/lib/snort_dynamicengine/libsf_engine.so: Cannot open "/usr/local/lib/snort_dynamicengine/libsf_engine.so"
Fatal Error, Quitting..
 
# find / -name libsf_engine.so
/usr/local/lib/snort/dynamicengine/libsf_engine.so
 
Here is the pkg-plist entry:
 
orr:/usr/ports/security/snort$ grep lib/snort * | grep dynamic
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.a
pkg-plist:%%DYNAMIC%%@dirrmtry lib/snort/dynamicengine
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.a
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.a
pkg-plist:%%DYNAMIC%%@dirrmtry lib/snort/dynamicpreprocessor
 
 
 
>How-To-Repeat:
Install Snort 2.6.0 from package available today.
>Fix:
The location of the dynamic files can be specified in snort.conf:
 
dynamicpreprocessor directory /usr/local/lib/snort_dynamicpreprocessor/
 
dynamicengine /usr/local/lib/snort_dynamicengine/libsf_engine.so
 
Two options exist:
 
1.
 
Modify the pkg-plist to replace snort/dynamicengine with snort_dynamicengine.
Modify the pkg-plist to replace snort/dynamicpreprocessor with snort_dynamicpreprocessor.
 
2.
 
Modify snort.conf to specify
 
dynamicpreprocessor directory /usr/local/lib/snort/dynamicpreprocessor/
dynamicengine /usr/local/lib/snort/dynamicengine/libsf_engine.so
 
The second is preferred to stay consistent with hierarchy standards.
 
Note command-line options --dynamic-preprocessor-lib and --dynamic-engine-lib can also affect operation.
 
For my tests I changed snort.conf and successfully ran Snort.
 
Thank you!
>Release-Note:
>Audit-Trail:
>Unformatted:
Elapsed time: 0.157 seconds