Hi, After some research, crashes happened in OUR system when we reload many times.
Our system includes a web interface which generates new rules, puts a tar file with this rules on a server and calls a perl script. This perl script deletes old rules, untars new rules and executes a "kill -6" on correlation process. If we do two successive reloads on interface : _ Existing rules are deleted (RELOAD 1) _ Untar new rules (RELOAD 1) _ Kill -6 (RELOAD 1) but in the same time Existing rules are deleted (RELOAD 2) So, it's not really a problem from sec. Thank you for your time. Antonin. 2010/1/18 John P. Rouillard <[email protected]>: > > In message <[email protected]>, > Risto Vaarandi writes: >>Can you tell more about the platform you are running SEC on? Are you >>sure your Perl version is OK? Is your hardware OK? >> >>Last but not least -- from your previous posts I have got an >>understanding that you have modified SEC code for your in-house needs. >>Are these modifications still in the code, and if so, are you sure they >>have not created any side effects? > > Also are you loading any perl libraries other than Data/Dumper.pm? > Especially libraries that link to native code (C/XS). > > -- > -- rouilj > John Rouillard > =========================================================================== > My employers don't acknowledge my existence much less my opinions. > > ------------------------------------------------------------------------------ > Throughout its 18-year history, RSA Conference consistently attracts the > world's best and brightest in the field, creating opportunities for Conference > attendees to learn about information security's most important issues through > interactions with peers, luminaries and emerging and established companies. > http://p.sf.net/sfu/rsaconf-dev2dev > _______________________________________________ > Simple-evcorr-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/simple-evcorr-users > ------------------------------------------------------------------------------ Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev _______________________________________________ Simple-evcorr-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/simple-evcorr-users
