Bug 218674 - Snort Package Fails Installation
Summary: Snort Package Fails Installation
Alias: None
Product: Fedora
Classification: Fedora
Component: snort   
(Show other bugs)
Version: 5
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Dennis Gilmore
QA Contact: Fedora Extras Quality Assurance
Depends On:
Blocks: FE7Target
TreeView+ depends on / blocked
Reported: 2006-12-06 18:34 UTC by Chris Taylor
Modified: 2007-11-30 22:11 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2007-01-01 22:35:53 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

Description Chris Taylor 2006-12-06 18:34:07 UTC
Description of problem:
Package incorrectly installs /usr/lib/snort/dynamicengine/libsf_engine.so as the
file /usr/lib/snort/dynamicengine

Version-Release number of selected component (if applicable):

How reproducible:
See steps below

Steps to Reproduce:
1. Load FC5 for i386
2. D/L and install snort rpm.
3. file /usr/lib/snort/dynamicengine
Actual results:
It's a lib file

Expected results:
Should be the directory with the file libsf_engine.so inside it.

Additional info:
Numerous people have been unable to get this package to work correctly (please
see the snort newbies forums).  Please verify that it works correctly via
setting it up on a local lan with 2 other computers and verify that you can get
snort to detect a nmap portscan from one computer against another.

Comment 1 Michael Schwendt 2006-12-19 20:37:18 UTC
Looks like "EasyFix". The spec contains this,

install libsf_engine.so %{buildroot}%{_libdir}/snort/dynamicengine
install libsf_engine.so.0 %{buildroot}%{_libdir}/snort/dynamicengine
install libsf_engine.so.0.0.0 %{buildroot}%{_libdir}/snort/dynamicengine

which would fail in the described way when the target is not a directory.

Comment 2 Chris Taylor 2006-12-21 19:38:49 UTC
I built snort from source on a FC5 machine and I was able to get snort to log
portscans from nmap.  Unfortunately, when I had previously loaded the FC snort
package on my FC5 box it was unable to detect the portscans (same config files).
 I  made an attempt to correct the issue above by manually renaming the file but
it appeared there might be some other non-trivial problem that is preventing the
packaged version snort from logging (my build from source works just fine with
the same config file).

Any thoughts on this issue?

Comment 3 Dennis Gilmore 2007-01-01 22:35:53 UTC
Dynamic engine is now fixed.  and the build was able to detect a port scan.

Note You need to log in before you can comment on or make changes to this bug.