184084 – /etc/init.d/snortd starts snortd with wrong path to snort.conf

Bug 184084 - /etc/init.d/snortd starts snortd with wrong path to snort.conf

Summary: /etc/init.d/snortd starts snortd with wrong path to snort.conf

Keywords:
Status:	CLOSED NEXTRELEASE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	snort
Sub Component:
Version:	4
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Dennis Gilmore
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-03-06 03:52 UTC by Chong Kai Xiong
Modified:	2007-11-30 22:11 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2006-03-30 04:53:16 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
Patch to change config file path (358 bytes, patch) 2006-03-06 03:52 UTC, Chong Kai Xiong	no flags	Details \| Diff
View All

Description Chong Kai Xiong 2006-03-06 03:52:34 UTC

Description of problem:
/etc/init.d/snortd starts snort with -c /etc/snort/snort.conf but snort.conf is
located in /etc/. 'service snortd start' fails to start snort as a result even
though [OK] is printed.

Version-Release number of selected component (if applicable):
snort-2.4.3-1.fc4

How reproducible:
Always

Steps to Reproduce:
1. service snortd start
2. pgrep snort
  
Actual results:
snort is terminated with a fatal error logged in /var/log/messages. Step (2)
prints nothing.

Expected results:
snort running and step (2) would reveal its PID

Additional info:
None

Comment 1 Chong Kai Xiong 2006-03-06 03:52:34 UTC

Created attachment 125692 [details]
Patch to change config file path

Comment 2 Chong Kai Xiong 2006-03-06 04:08:17 UTC

I just noticed 2 more disturbing problems.

a. snort.conf includes several rules files that do not exist and are not
distributed with the RPM.

b. snort.conf refers to unicode.map under the configuration of http_inspect.
That file does not exist and is not installed either.

Comment 3 Dennis Gilmore 2006-03-06 04:48:14 UTC

I need to add a README file you have to download the rules from snort.org they 
do not license them under GPL  and we can not redistribute them. 
 
 
thnaks  for the patch

Comment 4 Chong Kai Xiong 2006-03-07 10:28:31 UTC

Ah interesting, I didn't notice they were licensed separately.

Comment 5 Dennis Gilmore 2006-03-30 04:53:16 UTC

fixed package  to put files in /etc/snort/

Note You need to log in before you can comment on or make changes to this bug.