From nobody@FreeBSD.org  Tue Sep  5 15:07:51 2006
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EC6EC16A4E6
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  5 Sep 2006 15:07:51 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A28E043E85
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  5 Sep 2006 15:04:47 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id k85F4Tfg019509
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 5 Sep 2006 15:04:29 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id k85F4T4u019508;
	Tue, 5 Sep 2006 15:04:29 GMT
	(envelope-from nobody)
Message-Id: <200609051504.k85F4T4u019508@www.freebsd.org>
Date: Tue, 5 Sep 2006 15:04:29 GMT
From: Richard Bejtlich <taosecurity@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: Snort 2.6.0 port dynamic location problem
X-Send-Pr-Version: www-2.3

>Number:         102909
>Category:       ports
>Synopsis:       Snort 2.6.0 port dynamic location problem
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    clsung
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue Sep 05 15:10:18 GMT 2006
>Closed-Date:    Wed Sep 06 02:29:39 GMT 2006
>Last-Modified:  Wed Sep 06 02:29:39 GMT 2006
>Originator:     Richard Bejtlich
>Release:        6.1 RELEASE
>Organization:
TaoSecurity
>Environment:
FreeBSD sensor 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Sun May  7 04:42:56 UTC 2006     root@opus.cse.buffalo.edu:/usr/obj/usr/src/sys/SMP  i386
>Description:
The pkg_plist for Snort 2.6.0 is incorrectly specified.

# snort -T
..edited...

Loading dynamic engine /usr/local/lib/snort_dynamicengine/libsf_engine.so... ERROR: Failed to load /usr/local/lib/snort_dynamicengine/libsf_engine.so: Cannot open "/usr/local/lib/snort_dynamicengine/libsf_engine.so"
Fatal Error, Quitting..

# find / -name libsf_engine.so
/usr/local/lib/snort/dynamicengine/libsf_engine.so

Here is the pkg-plist entry:

orr:/usr/ports/security/snort$ grep lib/snort * | grep dynamic
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicengine/libsf_engine.a
pkg-plist:%%DYNAMIC%%@dirrmtry lib/snort/dynamicengine
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.a
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.so
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.so.0
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.la
pkg-plist:%%DYNAMIC%%lib/snort/dynamicpreprocessor/libsf_smtp_preproc.a
pkg-plist:%%DYNAMIC%%@dirrmtry lib/snort/dynamicpreprocessor



>How-To-Repeat:
Install Snort 2.6.0 from package available today.
>Fix:
The location of the dynamic files can be specified in snort.conf:

dynamicpreprocessor directory /usr/local/lib/snort_dynamicpreprocessor/

dynamicengine /usr/local/lib/snort_dynamicengine/libsf_engine.so

Two options exist:

1.

Modify the pkg-plist to replace snort/dynamicengine with snort_dynamicengine.
Modify the pkg-plist to replace snort/dynamicpreprocessor with snort_dynamicpreprocessor.

2.

Modify snort.conf to specify

dynamicpreprocessor directory /usr/local/lib/snort/dynamicpreprocessor/
dynamicengine /usr/local/lib/snort/dynamicengine/libsf_engine.so

The second is preferred to stay consistent with hierarchy standards.

Note command-line options --dynamic-preprocessor-lib and --dynamic-engine-lib can also affect operation.

For my tests I changed snort.conf and successfully ran Snort.

Thank you!
>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-ports-bugs->clsung 
Responsible-Changed-By: edwin 
Responsible-Changed-When: Tue Sep 5 22:21:46 UTC 2006 
Responsible-Changed-Why:  
Over to maintainer 

http://www.freebsd.org/cgi/query-pr.cgi?pr=102909 
State-Changed-From-To: open->closed 
State-Changed-By: clsung 
State-Changed-When: Wed Sep 6 02:29:38 UTC 2006 
State-Changed-Why:  
Committed. Thank You. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=102909 
>Unformatted:
