Re: [psad-discuss] ubuntu and psad
On Sep 11, 2012, hernani wrote: On 09/10/2012 08:26 PM, Johannes Lavre wrote: Den 10.09.2012 02:12, skrev hernani: hello, I install ubuntu 12.04 and psad, but psad no detect activity scanner nmap, i install version 2.2 of psad. Psad dont show any errors. can someone help me? Thank you hernani Make sure iptables is logging And check your syslog for errors. And insted of creating a psadfifo pipe you can enter the log file directly if psad config that psad should watch for iptables log messages. http://www.cipherdyne.org/psad/docs/syslog.html http://www.cipherdyne.org/psad/docs/fwconfig.html hello, thank you for your answer, i get psad to work, now i install fwsnort and when i run this command --- /sbin/iptables-restore /var/lib/fwsnort/fwsnort.save give me this error --- Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`). Bad argument `bm' Error occurred at line: 9500 Try `iptables-restore -h' or 'iptables-restore --help' for more information. Hello, Can you send me line 9500 of the /var/lib/fwsnort/fwsnort.save file? There may be a translation error for a particular signature that fwsnort is trying to translate. fwsnort generally supports extrapositioned negation, but maybe I missed a particular option somewhere that should support it. Thanks, --Mike Thank you hernani -- Got visibility? Most devs has no idea what their production app looks like. Find out how fast your code is with AppDynamics Lite. http://ad.doubleclick.net/clk;262219671;13503038;y? http://info.appdynamics.com/FreeJavaPerformanceDownload.html ___ psad-discuss mailing list psad-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/psad-discuss
Re: [psad-discuss] ubuntu and psad
On 09/10/2012 08:26 PM, Johannes Lavre wrote: Den 10.09.2012 02:12, skrev hernani: hello, I install ubuntu 12.04 and psad, but psad no detect activity scanner nmap, i install version 2.2 of psad. Psad dont show any errors. can someone help me? Thank you hernani -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ psad-discuss mailing list psad-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/psad-discuss - No virus found in this message. Checked by AVG - www.avg.com Version: 2012.0.2221 / Virus Database: 2437/5260 - Release Date: 09/10/12 Make sure iptables is logging And check your syslog for errors. And insted of creating a psadfifo pipe you can enter the log file directly if psad config that psad should watch for iptables log messages. http://www.cipherdyne.org/psad/docs/syslog.html http://www.cipherdyne.org/psad/docs/fwconfig.html hello, thank you for your answer, i get psad to work, now i install fwsnort and when i run this command --- /sbin/iptables-restore /var/lib/fwsnort/fwsnort.save give me this error --- Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`). Bad argument `bm' Error occurred at line: 9500 Try `iptables-restore -h' or 'iptables-restore --help' for more information. Thank you hernani -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ psad-discuss mailing list psad-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/psad-discuss
Re: [psad-discuss] ubuntu and psad
Den 10.09.2012 02:12, skrev hernani: hello, I install ubuntu 12.04 and psad, but psad no detect activity scanner nmap, i install version 2.2 of psad. Psad dont show any errors. can someone help me? Thank you hernani -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ psad-discuss mailing list psad-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/psad-discuss - No virus found in this message. Checked by AVG - www.avg.com Version: 2012.0.2221 / Virus Database: 2437/5260 - Release Date: 09/10/12 Make sure iptables is logging And check your syslog for errors. And insted of creating a psadfifo pipe you can enter the log file directly if psad config that psad should watch for iptables log messages. http://www.cipherdyne.org/psad/docs/syslog.html http://www.cipherdyne.org/psad/docs/fwconfig.html -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ psad-discuss mailing list psad-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/psad-discuss