Another caveat, I only played with the agent code. If your manager is running on HP-UX w/o IPv6, then there's more to do.
On Wed, Sep 7, 2011 at 11:47 AM, Alisha Kloc <[email protected]> wrote: > All right, I'll make sure to include that. > > Out of curiosity, can you explain exactly what this new code is doing? My hopes are that it is basically using the code from 2.5.1 instead of the 2.6 code. There didn't seem to be any real logic changes, only changes related to IPv6. I made sure it compiles (on 1 OS), but I didn't test it to make sure I got everything. > Is it the same thing that would be added if the official build > included a switch to turn off IPv6? > I can't say what way Daniel would want to go with this. If his stated idea works, then that's probably the way to go. It looked a lot cleaner than the patches I sent, and would probably be a lot easier to maintain. > The reason I ask is, even if I test this code and it works, we > wouldn't be able to use it to build our agents. We're only allowed to > use officially released software - a dot build like 2.4 or 2.5.1. > Doing anything else counts as modifying the source code, which we're > not allowed to do. So I need to make sure the time I spend testing > will move toward a released 2.X build that includes the fix - > otherwise I can't justify the time to my boss. :) > Understood. You should wait for Daniel Cid to make a decision then. :) > > > > > On Sep 6, 6:00 pm, "dan (ddp)" <[email protected]> wrote: >> Oops, I forgot a step. You have to make sure to add -DOS_NOINET6=\"1\" >> to the CFLAGS in the Config.Make file before running install.sh >> Mine looks like this on that system: >> CFLAGS = -g -Wall -I${PT} -I${PT}headers ${CPATH} ${CEXTRA} ${DEXTRA} >> ${EEXTRA} ${FEXTRA} ${GEXTRA} ${HEXTRA} -DARGV0=\"${NAME}\" >> -DXML_VAR=\"var\" -DOSSECHIDS -DOS_NOINET6=\"1\" >> >> >> >> >> >> >> >> On Tue, Sep 6, 2011 at 5:47 PM, Alisha Kloc <[email protected]> wrote: >> > Okay, thanks! >> >> > It'll be a few days, at least, before I have access to our HP-UX >> > systems to try these - we're in the middle of a testing cycle right >> > now. But once I can I'll let you know what happens. >> >> > On Sep 6, 2:11 pm, dan <[email protected]> wrote: >> >> Like I said, I haven't tested these (beyond compiling them on a system >> >> WITH ipv6). They may not work at all >> >> >> These are simple code diffs. To apply cd into the ossec-hids-2.6/src >> >> directory and run "patch -p0 < os_net.diff" and "patch -p0 < >> >> client-agent.diff" >> >> >> It should look something like: >> >> >> [ddp@ix] :; patch -p0 < /tmp/os_net.diff >> >> Hmm... Looks like a unified diff to me... >> >> The text leading up to this was: >> >> -------------------------- >> >> |diff -u ../../2/ossec-hids-2.6/src/os_net/os_net.c ./os_net/os_net.c >> >> |--- ../../2/ossec-hids-2.6/src/os_net/os_net.c Mon Jul 11 15:36:59 2011 >> >> |+++ ./os_net/os_net.c Tue Sep 6 16:04:09 2011 >> >> -------------------------- >> >> Patching file ./os_net/os_net.c using Plan A... >> >> Hunk #1 succeeded at 41. >> >> Hunk #2 succeeded at 83. >> >> Hunk #3 succeeded at 103. >> >> Hunk #4 succeeded at 112. >> >> Hunk #5 succeeded at 137. >> >> Hunk #6 succeeded at 163. >> >> Hunk #7 succeeded at 302. >> >> Hunk #8 succeeded at 356. >> >> Hunk #9 succeeded at 380. >> >> Hunk #10 succeeded at 404. >> >> Hmm... The next patch looks like a unified diff to me... >> >> The text leading up to this was: >> >> -------------------------- >> >> |diff -u ../../2/ossec-hids-2.6/src/os_net/os_net.h ./os_net/os_net.h >> >> |--- ../../2/ossec-hids-2.6/src/os_net/os_net.h Mon Jul 11 15:36:59 2011 >> >> |+++ ./os_net/os_net.h Tue Sep 6 16:00:05 2011 >> >> -------------------------- >> >> Patching file ./os_net/os_net.h using Plan A... >> >> Hunk #1 succeeded at 23. >> >> Hunk #2 succeeded at 43. >> >> >> and >> >> >> [ddp@ix] :; patch -p0 < /tmp/client-agent.diff >> >> Hmm... Looks like a unified diff to me... >> >> The text leading up to this was: >> >> -------------------------- >> >> |diff -u ../../2/ossec-hids-2.6/src/client-agent/start_agent.c >> >> ./client-agent/start_agent.c >> >> |--- ../../2/ossec-hids-2.6/src/client-agent/start_agent.c Mon Jul >> >> 11 15:36:58 2011 >> >> |+++ ./client-agent/start_agent.c Tue Sep 6 16:11:03 2011 >> >> -------------------------- >> >> Patching file ./client-agent/start_agent.c using Plan A... >> >> Hunk #1 succeeded at 101. >> >> done >> >> >> Good luck! >> >> dan >> >> >> On Tue, Sep 06, 2011 at 01:29:36PM -0700, Alisha Kloc wrote: >> >> > Daniel, >> >> >> > Is that something that can be added as a switch to an official >> >> > release? We are absolutely forbidden from modifying source code, so we >> >> > wouldn't be able to do it ourselves. >> >> >> > Dan, >> >> >> > I'd offer to test those when our HP-UX systems become available again, >> >> > but I have no idea what they're telling me - I'm not a programmer and >> >> > we don't do code on this project. Sorry! >> >> >> > On Sep 6, 1:16?pm, dan <[email protected]> wrote: >> >> > > I don't have an ipv6-less system to test this, but these MAY work >> >> > > on an agent. >> >> >> > > On Tue, Sep 06, 2011 at 11:32:02AM -0700, Alisha Kloc wrote: >> >> > > > Well, crud. We need HP-UX support and if we can't compile the agents >> >> > > > because of IPv6, I guess that means we won't be upgrading past OSSEC >> >> > > > 2.5. >> >> >> > > > Does OSSEC still have that bug tracker/feature request site? I don't >> >> > > > know if we're a corner case or what, but if it's not too difficult >> >> > > > to >> >> > > > add, I really would like to file it as a feature request. >> >> >> > > > On Sep 5, 11:41?am, "dan (ddp)" <[email protected]> wrote: >> >> > > > > There isn't currently a way to disable ipv6 like that. >> >> >> > > ?os_net.diff >> >> > > 6KViewDownload >> >> >> > > ?client-agent.diff >> >> > > < 1KViewDownload >> >> >> os_net.diff >> >> 6KViewDownload >> >> >> client-agent.diff >> >> < 1KViewDownload
