security/samhain : bad prefix

classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

security/samhain : bad prefix

Julien Dhaille
Hello.
The samhain daemon use by default :
/usr/local/var/run/samhain.pid and
/usr/local/var/log/samhain_log

I think you should add :
--with-pid-file=/var/run/samhain.pid
--with-log-file=/var/log/samhain_log
in Makefile

Cheers
--
Julien Dhaille
Reply | Threaded
Open this post in threaded view
|

Re: security/samhain : bad prefix

Antoine Jacoutot-7
On Fri, Sep 07, 2012 at 03:09:31PM +0200, Julien Dhaille wrote:
> Hello.
> The samhain daemon use by default :
> /usr/local/var/run/samhain.pid and
> /usr/local/var/log/samhain_log
>
> I think you should add :
> --with-pid-file=/var/run/samhain.pid
> --with-log-file=/var/log/samhain_log
> in Makefile

More details are needed...

--
Antoine

Reply | Threaded
Open this post in threaded view
|

Re: security/samhain : bad prefix

Julien Dhaille
# samhain -t init


[....]
<log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="File not accessible"
userid="0" path="/usr/local/var/log/samhain_log" />
<log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="Service failure"
service="logfile" obj="/usr/local/var/log/samhain_log" />
[....]

(if I make :
# mkdir -p /usr/local/var/log, I can see on /usr/local/var/log/samhain_log :


<trail>
<log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="No server name
known"  >
<sig>C2B80AE7F522DC306B91FF310D2FA513252554D15D15E1CE2012-09-07T15:57:18+0200</sig></log>
<log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Group writeable and
member not trustworthy" subroutine="trustfile"
path="/usr/local/var/run/samhain.pid" obj="/usr/local/var/run"  >
<sig>A051BAB2B7B084C1381223DA9F032B24E226E2663089687D</sig></log>
<log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Cannot create PID
file (3)" subroutine="sh_unix_test_and_lock"  >
<sig>FF49929308A205613989502805BEBB8A43C59CFA326560B0</sig></log>
<log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Could not write PID
file" userid="0" path="/usr/local/var/run/samhain.pid"  >
<sig>8B477AAC7F10417A7066C8060BA0697351143CF57CCFE5DB</sig></log>
<log sev="ALRT" tstamp="2012-09-07T15:57:18+0200" msg="EXIT"
program="Samhain" status="None"  >
<sig>495F397A0162FF33EC6AD733E6A4560807E1E73CE0C6234A</sig></log>
)

The daemon want to write pid file and log file in /usr/local/var/run and
/usr/local/var/log.


I think it should add to CONFIGURE_ARGS :
--with-pid-file=/var/run/samhain.pid
--with-log-file=/var/log/samhain_log


2012/9/7 Antoine Jacoutot <[hidden email]>

> On Fri, Sep 07, 2012 at 03:09:31PM +0200, Julien Dhaille wrote:
> > Hello.
> > The samhain daemon use by default :
> > /usr/local/var/run/samhain.pid and
> > /usr/local/var/log/samhain_log
> >
> > I think you should add :
> > --with-pid-file=/var/run/samhain.pid
> > --with-log-file=/var/log/samhain_log
> > in Makefile
>
> More details are needed...
>
> --
> Antoine
>



--
Julien Dhaille
Reply | Threaded
Open this post in threaded view
|

Re: security/samhain : bad prefix

Antoine Jacoutot-7
On Fri, Sep 07, 2012 at 04:04:40PM +0200, Julien Dhaille wrote:
>
>    # samhain -t init

Package version?
Release?
...

>
>
>
>    [....]
>    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="File not
>    accessible" userid="0" path="/usr/local/var/log/samhain_log" />
>    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="Service failure"
>    service="logfile" obj="/usr/local/var/log/samhain_log" />
>    [....]
>    (if I make :
>    # mkdir -p /usr/local/var/log, I can see on
>    /usr/local/var/log/samhain_log :
>    <trail>
>    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="No server name
>    known"  >
>    <sig>C2B80AE7F522DC306B91FF310D2FA513252554D15D15E1CE2012-09-07T15:57:1
>    8+0200</sig></log>
>    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Group writeable
>    and member not trustworthy" subroutine="trustfile"
>    path="/usr/local/var/run/samhain.pid" obj="/usr/local/var/run"  >
>    <sig>A051BAB2B7B084C1381223DA9F032B24E226E2663089687D</sig></log>
>    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Cannot create
>    PID file (3)" subroutine="sh_unix_test_and_lock"  >
>    <sig>FF49929308A205613989502805BEBB8A43C59CFA326560B0</sig></log>
>    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Could not write
>    PID file" userid="0" path="/usr/local/var/run/samhain.pid"  >
>    <sig>8B477AAC7F10417A7066C8060BA0697351143CF57CCFE5DB</sig></log>
>    <log sev="ALRT" tstamp="2012-09-07T15:57:18+0200" msg="EXIT"
>    program="Samhain" status="None"  >
>    <sig>495F397A0162FF33EC6AD733E6A4560807E1E73CE0C6234A</sig></log>
>    )
>    The daemon want to write pid file and log file in /usr/local/var/run
>    and /usr/local/var/log.
>    I think it should add to CONFIGURE_ARGS :
>    --with-pid-file=/var/run/samhain.pid
>    --with-log-file=/var/log/samhain_log
>    2012/9/7 Antoine Jacoutot <[1][hidden email]>
>
>    On Fri, Sep 07, 2012 at 03:09:31PM +0200, Julien Dhaille wrote:
>    > Hello.
>    > The samhain daemon use by default :
>    > /usr/local/var/run/samhain.pid and
>    > /usr/local/var/log/samhain_log
>    >
>    > I think you should add :
>    > --with-pid-file=/var/run/samhain.pid
>    > --with-log-file=/var/log/samhain_log
>    > in Makefile
>
>      More details are needed...
>      --
>      Antoine
>
>    --
>    Julien Dhaille
>
> References
>
>    1. mailto:[hidden email]

--
Antoine

Reply | Threaded
Open this post in threaded view
|

Re: security/samhain : bad prefix

Julien Dhaille
Package version : 3.0.4 on amd64

2012/9/7 Antoine Jacoutot <[hidden email]>

> On Fri, Sep 07, 2012 at 04:04:40PM +0200, Julien Dhaille wrote:
> >
> >    # samhain -t init
>
> Package version?
> Release?
> ...
>
> >
> >
> >
> >    [....]
> >    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="File not
> >    accessible" userid="0" path="/usr/local/var/log/samhain_log" />
> >    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="Service
> failure"
> >    service="logfile" obj="/usr/local/var/log/samhain_log" />
> >    [....]
> >    (if I make :
> >    # mkdir -p /usr/local/var/log, I can see on
> >    /usr/local/var/log/samhain_log :
> >    <trail>
> >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="No server name
> >    known"  >
> >
>  <sig>C2B80AE7F522DC306B91FF310D2FA513252554D15D15E1CE2012-09-07T15:57:1
> >    8+0200</sig></log>
> >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Group writeable
> >    and member not trustworthy" subroutine="trustfile"
> >    path="/usr/local/var/run/samhain.pid" obj="/usr/local/var/run"  >
> >    <sig>A051BAB2B7B084C1381223DA9F032B24E226E2663089687D</sig></log>
> >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Cannot create
> >    PID file (3)" subroutine="sh_unix_test_and_lock"  >
> >    <sig>FF49929308A205613989502805BEBB8A43C59CFA326560B0</sig></log>
> >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Could not write
> >    PID file" userid="0" path="/usr/local/var/run/samhain.pid"  >
> >    <sig>8B477AAC7F10417A7066C8060BA0697351143CF57CCFE5DB</sig></log>
> >    <log sev="ALRT" tstamp="2012-09-07T15:57:18+0200" msg="EXIT"
> >    program="Samhain" status="None"  >
> >    <sig>495F397A0162FF33EC6AD733E6A4560807E1E73CE0C6234A</sig></log>
> >    )
> >    The daemon want to write pid file and log file in /usr/local/var/run
> >    and /usr/local/var/log.
> >    I think it should add to CONFIGURE_ARGS :
> >    --with-pid-file=/var/run/samhain.pid
> >    --with-log-file=/var/log/samhain_log
> >    2012/9/7 Antoine Jacoutot <[1][hidden email]>
> >
> >    On Fri, Sep 07, 2012 at 03:09:31PM +0200, Julien Dhaille wrote:
> >    > Hello.
> >    > The samhain daemon use by default :
> >    > /usr/local/var/run/samhain.pid and
> >    > /usr/local/var/log/samhain_log
> >    >
> >    > I think you should add :
> >    > --with-pid-file=/var/run/samhain.pid
> >    > --with-log-file=/var/log/samhain_log
> >    > in Makefile
> >
> >      More details are needed...
> >      --
> >      Antoine
> >
> >    --
> >    Julien Dhaille
> >
> > References
> >
> >    1. mailto:[hidden email]
>
> --
> Antoine
>



--
Julien Dhaille
Reply | Threaded
Open this post in threaded view
|

Re: security/samhain : bad prefix

Antoine Jacoutot-7
On Fri, Sep 07, 2012 at 04:14:39PM +0200, Julien Dhaille wrote:

>
>    Package version : 3.0.4 on amd64
>
>    2012/9/7 Antoine Jacoutot <[1][hidden email]>
>
>      On Fri, Sep 07, 2012 at 04:04:40PM +0200, Julien Dhaille wrote:
>      >
>      >    # samhain -t init
>      Package version?
>      Release?
       ^^^^^^^


>      ...
>
>    >
>    >
>    >
>    >    [....]
>    >    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="File not
>    >    accessible" userid="0" path="/usr/local/var/log/samhain_log" />
>    >    <log sev="ERRO" tstamp="2012-09-07T15:50:47+0200" msg="Service
>    failure"
>    >    service="logfile" obj="/usr/local/var/log/samhain_log" />
>    >    [....]
>    >    (if I make :
>    >    # mkdir -p /usr/local/var/log, I can see on
>    >    /usr/local/var/log/samhain_log :
>    >    <trail>
>    >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="No server
>    name
>    >    known"  >
>    >
>    <sig>C2B80AE7F522DC306B91FF310D2FA513252554D15D15E1CE2012-09-07T15:57:1
>    >    8+0200</sig></log>
>    >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Group
>    writeable
>    >    and member not trustworthy" subroutine="trustfile"
>    >    path="/usr/local/var/run/samhain.pid" obj="/usr/local/var/run"  >
>    >    <sig>A051BAB2B7B084C1381223DA9F032B24E226E2663089687D</sig></log>
>    >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Cannot
>    create
>    >    PID file (3)" subroutine="sh_unix_test_and_lock"  >
>    >    <sig>FF49929308A205613989502805BEBB8A43C59CFA326560B0</sig></log>
>    >    <log sev="ERRO" tstamp="2012-09-07T15:57:18+0200" msg="Could not
>    write
>    >    PID file" userid="0" path="/usr/local/var/run/samhain.pid"  >
>    >    <sig>8B477AAC7F10417A7066C8060BA0697351143CF57CCFE5DB</sig></log>
>    >    <log sev="ALRT" tstamp="2012-09-07T15:57:18+0200" msg="EXIT"
>    >    program="Samhain" status="None"  >
>    >    <sig>495F397A0162FF33EC6AD733E6A4560807E1E73CE0C6234A</sig></log>
>    >    )
>    >    The daemon want to write pid file and log file in
>    /usr/local/var/run
>    >    and /usr/local/var/log.
>    >    I think it should add to CONFIGURE_ARGS :
>    >    --with-pid-file=/var/run/samhain.pid
>    >    --with-log-file=/var/log/samhain_log
>
>      >    2012/9/7 Antoine Jacoutot <[1][2][hidden email]>
>
>    >
>    >    On Fri, Sep 07, 2012 at 03:09:31PM +0200, Julien Dhaille wrote:
>    >    > Hello.
>    >    > The samhain daemon use by default :
>    >    > /usr/local/var/run/samhain.pid and
>    >    > /usr/local/var/log/samhain_log
>    >    >
>    >    > I think you should add :
>    >    > --with-pid-file=/var/run/samhain.pid
>    >    > --with-log-file=/var/log/samhain_log
>    >    > in Makefile
>    >
>    >      More details are needed...
>    >      --
>    >      Antoine
>    >
>    >    --
>    >    Julien Dhaille
>    >
>
>      > References
>      >
>      >    1. mailto:[3][hidden email]
>      --
>      Antoine
>
>    --
>    Julien Dhaille
>
> References
>
>    1. mailto:[hidden email]
>    2. mailto:[hidden email]
>    3. mailto:[hidden email]

--
Antoine