Package: snort-common Version: 2.3.0-7 Severity: important Hi,
snort package was on hold (actually it was a local build with prelude patch, but we reproduced the bug with Debian package too), so only snort-common and snort-rules-default were upgraded. This resulted in snort failing to start: Mar 21 21:39:19 jurina snort: Mar 21 21:39:19 jurina snort: rpc_decode arguments: Mar 21 21:39:19 jurina snort: Ports to decode RPC on: 111 32771 Mar 21 21:39:19 jurina snort: alert_fragments: INACTIVE Mar 21 21:39:19 jurina snort: alert_large_fragments: ACTIVE Mar 21 21:39:19 jurina snort: alert_incomplete: ACTIVE Mar 21 21:39:19 jurina snort: alert_multiple_requests: ACTIVE Mar 21 21:39:19 jurina snort: telnet_decode arguments: Mar 21 21:39:19 jurina snort: Ports to decode telnet on: 21 23 25 119 Mar 21 21:39:19 jurina snort: FATAL ERROR: unknown preprocessor "��^^^Hrtscan" Files in /etc/snort look ok, no binary garbage like above. The easiest workaround is probably Conflicts: snort (<< 2.3.0) (et al.) in snort-common. Perhaps adding an upper limit for dependencies, like in the apache package, would stop this from happening again? Depends: apache-common (>= 1.3.33-4), apache-common (<< 1.3.34-0) $ dpkg -l snort\*|grep ^.i hi snort 2.2.0-9 Flexible Network Intrusion Detection Sy ii snort-common 2.3.0-7 Flexible Network Intrusion Detection Sy ii snort-rules-default 2.3.0-7 Flexible Network Intrusion Detection Sy -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.4.29-grsec Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages snort-common depends on: ii adduser 3.63 Add and remove users and groups ii debconf 1.4.30.11 Debian configuration management sy ii perl-modules 5.8.4-6 Core Perl modules ii sysklogd [system-log-daemon] 1.4.1-16 System Logging Daemon -- debconf information: snort/deprecated_config:
