How to install snort3 from github

First, you must clone the repository:

git clone https://github.com/snort3/snort3.git
cd snort3

Now, install snort2 dependencies and some dependencies that snort2 does not use:

sudo apt build-dep snort
sudo apt install libhwloc-dev libluajit-5.1-dev libunwind-dev 

Now, procced to compile the project:

./configure_cmake.sh
cd build
make

Probably you will see the following issue:

daq_dlt.h: No such file or directory

This happend, because you need a newer labdaq version (the version installed as dependence from snort is older).

git clone https://github.com/snort3/libdaq.git
cd libdaq
./bootstrap
./configure
make
sudo make install

Now, come back to snort3 folder and try to compile it again. Probably you will see this issue:

undefined reference to daq_version_string'

This appears because two versions of daq are installed (repository and github version). 
To solve it, like is reported here just remove the older version:

apt remove libdaq-dev

Now execute the following:

/usr/local/snort/bin/snort
/usr/local/snort/bin/snort: error while loading shared libraries: libdaq.so.3: cannot open shared object file: No such file or directory

sudo ldconfig   
/usr/local/snort/bin/snort --version

   ,,_     -*> Snort++ <*-
  o"  )~   Version 3.0.3 (Build 5)
   ''''    By Martin Roesch & The Snort Team
           http://snort.org/contact#team
           Copyright (C) 2014-2020 Cisco and/or its affiliates. All rights reserved.
           Copyright (C) 1998-2013 Sourcefire, Inc., et al.
           Using DAQ version 3.0.0
           Using LuaJIT version 2.1.0-beta3
           Using OpenSSL 3.0.0-alpha2-dev 
           Using libpcap version 1.8.1
           Using PCRE version 8.39 2016-06-14
           Using ZLIB version 1.2.11
           Using LZMA version 5.2.2


Comments

Post a Comment

Popular posts from this blog

Exception: Could not find a default OpenFlow controller in Mininet

If you try to run a mininet script like this  , maybe you will get this problem if you are under Ubuntu. Exception: Could not find a default OpenFlow controller  This is trigger because your system don't find a default controller . To enable it just add the first line and add the controller argument to net variable like the second line: from mininet.node import OVSController net = Mininet(topo=topo,host=CPULimitedHost, link=TCLink,controller = OVSController) Now, you will get the following error: c0 Cannot find required executable ovs-controller. Please make sure that it is installed and available in your $PATH: (/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin) ovs-controller is a legacy name. You need to be sure that you has it. sudo apt-get install openvswitch-testcontroller sudo cp /usr/bin/ovs-testcontroller /usr/bin/ovs-controller If you run it again, you should kill ovs-testcontroller first to avoid this: Exception: Please shut d
Read more

How to fix Android when developer options are not available for this user

Image
I have an Android One with Oreo version and suddenly my Android rebooted and after that it started to behave strangely: 1) Notification section doesn't work. I can't see notifications from my apps and the arrow and the screw icon to settings access don't work. 2) As I can't access to the notification area, I can't enable Use USB to Transfer Files to access to my phone memory. 3) I can't access to developer mode (I before active it with a lot of taps over Build number). Clicking on developer options just shows developer options are not available to this user. 4) I can't update or install the apps on google play. They freeze on Download pending... message 5) Home and Switch buttons don't work. They light up and vibrate when I tap them but they do nothing. This issue is apparently related to a deconfiguration of user accounts. To fix it, you need re-setup the users. As you can't access to the user manager (you are in guest mode
Read more

Webcam streaming throught VLC with YUY2 compatibility

If you try to stream your webcam throught VLC you probably will see the following issue: # vlc v4l2:///dev/video0 --sout '#rtp{mux=ts,sdp=rtsp://:8888/live.sdp}'  VLC media player 3.0.4 Vetinari (revision 3.0.4-0-gf615db6332) [000055c7620dd630] main libvlc: Running vlc with the default interface. Use 'cvlc' to use vlc without interface. [00007ff730002fe0] main mux error: cannot add this stream [00007ff730001180] stream_out_rtp stream out error: cannot add this stream to the muxer [00007ff73000ff60] main decoder error: cannot create packetizer output (YUY2) [00007ff73000ff60] main decoder error: buffer deadlock prevented To fix it, you must enable the transcoding and run the following command: cvlc -vvv v4l2:///dev/video0:chroma=mp2v --v4l2-width 1280 --v4l2-height 720 --sout '#transcode{vcodec=mp2v,acodec=mpga,fps=30}:rtp{mux=ts,sdp=rtsp://:8888/live.sdp}' where chroma enables hardware video decoding. You can edit the resolution, codecs and frame
Read more