Red Hat Bugzilla – Bug 469824
replace "alert.impact.severity" with "alert.assessment.impact.severity"
Last modified: 2008-12-17 19:36:16 EST
Description of problem:
Whilst my network was under attack, i received this notice in /var/log/messages:
Nov 4 05:05:03 rawhide prelude-correlator: ERROR: LUA error on 'brute_force': /usr/share/prelude-correlator/lua/lib.lua:54: set(alert.impact.severity): unable to create path: Unknown IDMEF child 'impact'. (lua.c:148 lua_r
I reported this to #prelude and was advised to:
replace /etc/prelude-correlator/lua-rules/brute-force.lua by https://trac.prelude-ids.org/browser/prelude-correlator/trunk/plugins/lua/ruleset/brute-force.lua
Version-Release number of selected component (if applicable):
This bug appears to have been reported against 'rawhide' during the Fedora 10 development cycle.
Changing version to '10'.
More information and reason for this action is here:
This was fixed in prelude-correlator-0.9.0-0.4.beta3.fc10. I'll push this into fc10 testing shortly.
prelude-correlator-0.9.0-0.4.beta3.fc10 has been submitted as an update for Fedora 10.
prelude-correlator-0.9.0-0.4.beta3.fc10 has been pushed to the Fedora 10 testing repository. If problems still persist, please make note of it in this bug report.
If you want to test the update, you can install it with
su -c 'yum --enablerepo=updates-testing update prelude-correlator'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F10/FEDORA-2008-10947
prelude-correlator-0.9.0-0.4.beta3.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.