Re: [Sguil-users] problems with log_packets
Status: Beta
Brought to you by:
bamm
From: <jes...@ya...> - 2006-10-20 07:21:59
|
Here we go: 20 09:20:15 veleta log_packets-veleta-eth0.sh: + HOSTNAME=veleta-eth0 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + SNORT_PATH=/usr/local/bin/snort Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + LOG_DIR=/nsm Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + MAX_DISK_USE=90 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + INTERFACE=eth0 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + PIDFILE=/var/run/snort_log-veleta-eth0.pid Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + PS=ps awx Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + GREP=/usr/bin/grep Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + TZ=GMT Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + export TZ Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' '!' -d /nsm/veleta-eth0 ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' '!' -d /nsm/veleta-eth0/dailylogs ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + LOG_DIR=/nsm/veleta-eth0/dailylogs Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + start Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' '!' -f /var/run/snort_log-veleta-eth0.pid ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' -x /usr/local/bin/snort ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' '!' -d /nsm/veleta-eth0/dailylogs ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: ++ date +%Y-%m-%d Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + today=2006-10-20 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' '!' -d /nsm/veleta-eth0/dailylogs/2006-10-20 ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + mkdir /nsm/veleta-eth0/dailylogs/2006-10-20 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: Success. Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: Checking disk space (limited to 90%)... Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: Current Disk Use: Capacity Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: 77% Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: Done. Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + chmod 777 /nsm/veleta-eth0/dailylogs/2006-10-20 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' -n ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + PID=7076 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' 0 = 0 ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + eval exec /usr/local/bin/snort -l /nsm/veleta-eth0/dailylogs/2006-10-20 -b -i eth0 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + echo Success. Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + echo 7076 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + cleandisk Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + echo 'Checking disk space (limited to 90%)...' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: ++ df -P /nsm/veleta-eth0/dailylogs Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: ++ awk '{print $5}' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: ++ grep -v -i filesystem Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: ++ tr -d % Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + CUR_USE=Capacity Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: 77 Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + echo ' Current Disk Use: Capacity Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: 77%' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + '[' Capacity 77 -gt 90 ']' Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: /usr/local/sguil/sensor/log_packets-veleta-eth0.sh: line 159: [: too many arguments Oct 20 09:20:15 veleta log_packets-veleta-eth0.sh: + echo Done. Oct 20 09:20:15 veleta sguil_logger-veleta-eth0: Iniciación de log_packets-veleta-eth0.sh succeeded Bamm Visscher <bam...@gm...> escribió: Can you add -x to your #! line (#!/bin/sh -x) and send me the output please. Bammkkkk On 10/19/06, Jesús Gálvez wrote: > Hi. When I try /etc/init.d/sguil_logger (startup script) i got the next > output: > > Checking disk space (limited to 90%)... > Current Disk Use: Capacity > 100% > /usr/local/sguil/sensor/log_packets.sh: line 159: [: too > many arguments > Done. > > You see that the disk is full, and the script don´t erae nothing. And give > an error in line 159: > > if [ $CUR_USE -gt $MAX_DISK_USE ]; then > > What can I do? > Thax > > > > > > ________________________________ > > LLama Gratis a cualquier PC del Mundo. > Llamadas a fijos y móviles desde 1 céntimo por minuto. > http://es.voice.yahoo.com > > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job > easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > > _______________________________________________ > Sguil-users mailing list > Sgu...@li... > https://lists.sourceforge.net/lists/listinfo/sguil-users > > > -- sguil - The Analyst Console for NSM http://sguil.sf.net ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Sguil-users mailing list Sgu...@li... https://lists.sourceforge.net/lists/listinfo/sguil-users --------------------------------- LLama Gratis a cualquier PC del Mundo. Llamadas a fijos y móviles desde 1 céntimo por minuto. http://es.voice.yahoo.com |