from /var/log/messages
Jun 13 20:03:59 riffraff snort[2656]: Log directory = /nsm/riffraff/
Jun 13 20:03:59 riffraff snort[2656]: Snort initialization completed successfull
y (pid=2656)
Jun 13 20:04:07 riffraff barnyard[2123]: Closing spool file '/nsm/riffraff//snor
t.log.1150157862'. Read 2180 records
Jun 13 20:04:07 riffraff barnyard[2123]: Opened spool file '/nsm/riffraff//snort
.log.1150254238'
Jun 13 20:04:07 riffraff barnyard[2123]: Waiting for new data
Jun 13 20:04:54 riffraff SGUILD: Client Connect: 10.153.8.201 49396 sock14
Jun 13 20:04:54 riffraff SGUILD: Validating client access: 10.153.8.201
Jun 13 20:04:54 riffraff SGUILD: Valid client access: 10.153.8.201
Jun 13 20:04:59 riffraff SGUILD: sock14 added to clientList
Jun 14 00:00:26 riffraff SGUILD: Socket sock14 closed
Jun 14 10:12:18 riffraff SGUILD: Creating event table event_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating tcphdr table tcphdr_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating udphdr table udphdr_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating icmphdr table icmphdr_riffraff_2006061
5.
Jun 14 10:12:18 riffraff SGUILD: Creating data table data_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating event MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating tcphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating udphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating icmphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating data MERGE table.
Jun 14 11:54:19 riffraff SGUILD: loaderd: Creating sancp table: sancp_riffraff_2
0060614.
Jun 14 11:54:19 riffraff SGUILD: Unknown command received from loaderd:
Jun 14 11:54:19 riffraff SGUILD: Lost communications with loaderd.
Jun 14 12:08:33 riffraff SGUILD: DB Error during: INSERT INTO `event_riffraff_20
060615` (sid, cid, unified_event_id, unified_event_ref, unified_ref_time, sign
ature, signature_gen, signature_id, signature_rev, timestamp, priority, class,
status, src_ip, dst_ip, ip_proto, ip_ver, ip_hlen, ip_tos, ip_len, ip_id, ip_fl
ags, ip_off, ip_ttl, ip_csum, src_port, dst_port) VALUES ('1', '12841', '1321',
'1321', '2006-06-14 19:08:33', 'MISC UPnP malformed advertisement', '1', '1384
', '8', '2006-06-14 19:08:33', '2', 'misc-attack', '0', '3232235521', '402653
1834', '17', '4', '5', '0', '346', '0', '2', '0', '4', '50415', '205
2', '1900') : mysqlexec: handle already closed (dangling pointer)
Jun 14 12:08:33 riffraff SGUILD: ERROR: While inserting event info: mysqlexec: h
andle already closed (dangling pointer)
Jun 14 12:08:33 riffraff barnyard[2123]: FATAL ERROR: Expected Confirm 12841 and
got: Failed to insert 12841: mysqlexec: handle already closed (dangling pointer)
Jun 14 12:08:33 riffraff barnyard[2123]: Exiting
Jun 13 20:03:59 riffraff snort[2656]: Snort initialization completed successfull
y (pid=2656)
Jun 13 20:04:07 riffraff barnyard[2123]: Closing spool file '/nsm/riffraff//snor
t.log.1150157862'. Read 2180 records
Jun 13 20:04:07 riffraff barnyard[2123]: Opened spool file '/nsm/riffraff//snort
.log.1150254238'
Jun 13 20:04:07 riffraff barnyard[2123]: Waiting for new data
Jun 13 20:04:54 riffraff SGUILD: Client Connect: 10.153.8.201 49396 sock14
Jun 13 20:04:54 riffraff SGUILD: Validating client access: 10.153.8.201
Jun 13 20:04:54 riffraff SGUILD: Valid client access: 10.153.8.201
Jun 13 20:04:59 riffraff SGUILD: sock14 added to clientList
Jun 14 00:00:26 riffraff SGUILD: Socket sock14 closed
Jun 14 10:12:18 riffraff SGUILD: Creating event table event_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating tcphdr table tcphdr_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating udphdr table udphdr_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating icmphdr table icmphdr_riffraff_2006061
5.
Jun 14 10:12:18 riffraff SGUILD: Creating data table data_riffraff_20060615.
Jun 14 10:12:18 riffraff SGUILD: Creating event MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating tcphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating udphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating icmphdr MERGE table.
Jun 14 10:12:18 riffraff SGUILD: Creating data MERGE table.
Jun 14 11:54:19 riffraff SGUILD: loaderd: Creating sancp table: sancp_riffraff_2
0060614.
Jun 14 11:54:19 riffraff SGUILD: Unknown command received from loaderd:
Jun 14 11:54:19 riffraff SGUILD: Lost communications with loaderd.
Jun 14 12:08:33 riffraff SGUILD: DB Error during: INSERT INTO `event_riffraff_20
060615` (sid, cid, unified_event_id, unified_event_ref, unified_ref_time, sign
ature, signature_gen, signature_id, signature_rev, timestamp, priority, class,
status, src_ip, dst_ip, ip_proto, ip_ver, ip_hlen, ip_tos, ip_len, ip_id, ip_fl
ags, ip_off, ip_ttl, ip_csum, src_port, dst_port) VALUES ('1', '12841', '1321',
'1321', '2006-06-14 19:08:33', 'MISC UPnP malformed advertisement', '1', '1384
', '8', '2006-06-14 19:08:33', '2', 'misc-attack', '0', '3232235521', '402653
1834', '17', '4', '5', '0', '346', '0', '2', '0', '4', '50415', '205
2', '1900') : mysqlexec: handle already closed (dangling pointer)
Jun 14 12:08:33 riffraff SGUILD: ERROR: While inserting event info: mysqlexec: h
andle already closed (dangling pointer)
Jun 14 12:08:33 riffraff barnyard[2123]: FATAL ERROR: Expected Confirm 12841 and
got: Failed to insert 12841: mysqlexec: handle already closed (dangling pointer)
Jun 14 12:08:33 riffraff barnyard[2123]: Exiting
posted by JD at
12:39 PM
0 Comments:
Post a Comment
<< Home