Problems with the security/snort port
Paul Schmehl
pschmehl_lists at tx.rr.com
Thu Jan 14 19:52:53 UTC 2010
For some reason, since the upgrade of snort, the rc.d script does not work
properly. The start process remains running and never releases th binary to
run in the background as a daemon. As a result, I have to background the start
process each time I start snort.
# ps -auxw | grep snort
root 14387 28.1 1.9 26096 9468 p0 R 5:53PM 0:04.27
/usr/local/bin/snort -u snort -g snort -Dq -i sis0 -c /usr/local/et
root 14333 0.0 1.6 10064 8192 ?? Ss 5:50PM 0:00.05
/usr/local/bin/barnyard2 -D -d /var/log/snort -f snort.u2 -w /var/l
root 14380 0.0 0.3 3464 1348 p0 S 5:53PM 0:00.01 /bin/sh
/usr/local/etc/rc.d/snort start
As you can see, snort is being started with the -D switch, but the commandline
to start the daemon is still running. If I don't background it, and I hit
control C to get back to a prompt, snort closes "normally", as though I had hit
stop.
Has anyone else seen this? Any idea what the problem might be?
--
Paul Schmehl, Senior Infosec Analyst
As if it wasn't already obvious, my opinions
are my own and not those of my employer.
*******************************************
"It is as useless to argue with those who have
renounced the use of reason as to administer
medication to the dead." Thomas Jefferson
More information about the freebsd-ports
mailing list