PSAD [RESOLVIDO]

1. PSAD [RESOLVIDO]

Marcio Antonelli
Xatoo

(usa Outra)

Enviado em 22/04/2017 - 16:01h

O aplicativo contra intrusão psad não instala no obrevange que é base arch pelo AUR e nem pelo repositório.

Xatoo


  


2. Re: PSAD [RESOLVIDO]

Carlos A. P. Cunha
Carlos_Cunha

(usa Deepin)

Enviado em 22/04/2017 - 22:25h

Xatoo escreveu:

O aplicativo contra intrusão psad não instala no obrevange que é base arch pelo AUR e nem pelo repositório.

Xatoo


Poste como esta fazendo e qual o erro que ocorre.


Abraço
#-------------------------------------------------------------------------------------#
Administrador de Redes Mistas Linux/Windows
LPI 101-102
LPI 201
Para consultas particulares acesse:
www.cunhatec.com.br

"Falar é fácil, me mostre o código." - Linus Torvalds


3. PSAD

Marcio Antonelli
Xatoo

(usa Outra)

Enviado em 23/04/2017 - 07:28h

marco o aplicativo no repositório do AUR e coloco pra instalar e no terminal no fim da instalação da erro:

Segue aqui o que ocorreu:



Preparando...

Construindo psad...
Cloning into 'psad'...
remote: Counting objects: 17, done.
remote: Compressing objects: 100% (14/14), done.
remote: Total 17 (delta 2), reused 17 (delta 2)
Unpacking objects: 100% (17/17), done.
==> Criando o pacote: psad 2.4.3-1 (dom abr 23 07:22:33 -03 2017)
==> Verificando as dependências de tempo de execução...
==> Verificando as dependências de tempo de compilação...
==> Obtendo fontes...
-> Baixando psad-2.4.3.tar.gz...
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 1729k 100 1729k 0 0 509k 0 0:00:03 0:00:03 --:--:-- 509k
-> Encontrado responses
-> Encontrado psad-systemdinit.archlinux
-> Encontrado psad.patch
==> Validando source arquivos com md5sums...
psad-2.4.3.tar.gz ... Passou
responses ... Passou
psad-systemdinit.archlinux ... Passou
psad.patch ... Passou
==> Extraindo fontes...
-> Extraindo psad-2.4.3.tar.gz com bsdtar
==> Iniciando build()...
patching file install.pl
==> Entrando no ambiente fakeroot...
==> Iniciando package()...
[+] Sun Apr 23 07:22:38 2017 Installing psad on hostname: antonelli-pc
[+] Removing /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/ directory from previous psad installation.
[+] Creating /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/archive
[+] mkdir /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/archive, 700
[+] Creating /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad
[+] mkdir /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad, 755
[+] Creating /tmp/pamac-build-antonelli/psad/pkg/psad/var/log/psad/fwdata file
[+] Compiling Marco d'Itri's whois client
[+] CMD: '/usr/bin/make -C deps/whois'
make: Entering directory '/tmp/pamac-build-antonelli/psad/src/psad-2.4.3/deps/whois'
cc -g -O2 -MM -MG *.c > Makefile.depend
cc -g -O2 -c whois.c
cc -g -O2 -c utils.c
cc -Wl,-O1,--sort-common,--as-needed,-z,relro -o whois whois.o utils.o
cc -g -O2 -c mkpasswd.c
In file included from /usr/include/bits/libc-header-start.h:33:0,
from /usr/include/stdio.h:28,
from mkpasswd.c:24:
/usr/include/features.h:180:3: warning: #warning "_BSD_SOURCE and _SVID_SOURCE are deprecated, use _DEFAULT_SOURCE" [-Wcpp]
# warning "_BSD_SOURCE and _SVID_SOURCE are deprecated, use _DEFAULT_SOURCE"
^~~~~~~
cc -Wl,-O1,--sort-common,--as-needed,-z,relro -o mkpasswd mkpasswd.o utils.o -lcrypt
make: Leaving directory '/tmp/pamac-build-antonelli/psad/src/psad-2.4.3/deps/whois'
[+] Copying whois binary to /tmp/pamac-build-antonelli/psad/pkg/psad/usr/bin/whois_psad


[+] Module Unix::Syslog is already installed in the system perl tree, skipping.
[+] Module Bit::Vector is already installed in the system perl tree, skipping.
[+] Module Storable is already installed in the system perl tree, skipping.
[+] Module Carp::Clan is already installed in the system perl tree, skipping.
[+] Module Date::Calc is already installed in the system perl tree, skipping.
[+] Module NetAddr::IP is already installed in the system perl tree, skipping.
[+] Installing the IPTables::Parse 1.6.1 perl module in /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/
[+] CMD: '/usr/bin/perl Makefile.PL PREFIX=/tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad LIB=/tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad'
Checking if your kit is complete...
Looks good
Generating a Unix-style Makefile
Writing Makefile for IPTables::Parse
Writing MYMETA.yml and MYMETA.json
[+] CMD: '/usr/bin/make'
cp lib/IPTables/Parse.pm blib/lib/IPTables/Parse.pm
Manifying 1 pod document
[+] CMD: '/usr/bin/make install'
Manifying 1 pod document
Installing /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/IPTables/Parse.pm
Installing /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/share/man/man3/IPTables::Parse.3pm
Appending installation info to /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/x86_64-linux-thread-multi/perllocal.pod


[+] Installing the IPTables::ChainMgr 1.5 perl module in /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/
[+] CMD: '/usr/bin/perl Makefile.PL PREFIX=/tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad LIB=/tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad'
Checking if your kit is complete...
Looks good
Generating a Unix-style Makefile
Writing Makefile for IPTables::ChainMgr
Writing MYMETA.yml and MYMETA.json
[+] CMD: '/usr/bin/make'
cp lib/IPTables/ChainMgr.pm blib/lib/IPTables/ChainMgr.pm
Manifying 1 pod document
[+] CMD: '/usr/bin/make install'
Manifying 1 pod document
Installing /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/IPTables/ChainMgr.pm
Installing /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/share/man/man3/IPTables::ChainMgr.3pm
Appending installation info to /tmp/pamac-build-antonelli/psad/pkg/psad/usr/lib/psad/x86_64-linux-thread-multi/perllocal.pod


[+] Installing Snort-2.3.3 signatures in /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/snort_rules
[+] mkdir /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/snort_rules, 700
[+] Installing deps/snort_rules/x11.rules
[+] Installing deps/snort_rules/web-php.rules
[+] Installing deps/snort_rules/web-misc.rules
[+] Installing deps/snort_rules/web-iis.rules
[+] Installing deps/snort_rules/web-frontpage.rules
[+] Installing deps/snort_rules/web-coldfusion.rules
[+] Installing deps/snort_rules/web-client.rules
[+] Installing deps/snort_rules/web-cgi.rules
[+] Installing deps/snort_rules/web-attacks.rules
[+] Installing deps/snort_rules/virus.rules
[+] Installing deps/snort_rules/tftp.rules
[+] Installing deps/snort_rules/telnet.rules
[+] Installing deps/snort_rules/sql.rules
[+] Installing deps/snort_rules/snmp.rules
[+] Installing deps/snort_rules/smtp.rules
[+] Installing deps/snort_rules/shellcode.rules
[+] Installing deps/snort_rules/scan.rules
[+] Installing deps/snort_rules/rservices.rules
[+] Installing deps/snort_rules/rpc.rules
[+] Installing deps/snort_rules/reference.config
[+] Installing deps/snort_rules/[*****].rules
[+] Installing deps/snort_rules/pop3.rules
[+] Installing deps/snort_rules/pop2.rules
[+] Installing deps/snort_rules/policy.rules
[+] Installing deps/snort_rules/p2p.rules
[+] Installing deps/snort_rules/other-ids.rules
[+] Installing deps/snort_rules/oracle.rules
[+] Installing deps/snort_rules/nntp.rules
[+] Installing deps/snort_rules/netbios.rules
[+] Installing deps/snort_rules/mysql.rules
[+] Installing deps/snort_rules/multimedia.rules
[+] Installing deps/snort_rules/misc.rules
[+] Installing deps/snort_rules/local.rules
[+] Installing deps/snort_rules/info.rules
[+] Installing deps/snort_rules/imap.rules
[+] Installing deps/snort_rules/icmp.rules
[+] Installing deps/snort_rules/icmp-info.rules
[+] Installing deps/snort_rules/ftp.rules
[+] Installing deps/snort_rules/finger.rules
[+] Installing deps/snort_rules/exploit.rules
[+] Installing deps/snort_rules/experimental.rules
[+] Installing deps/snort_rules/emerging-all.rules
[+] Installing deps/snort_rules/dos.rules
[+] Installing deps/snort_rules/dns.rules
[+] Installing deps/snort_rules/deleted.rules
[+] Installing deps/snort_rules/ddos.rules
[+] Installing deps/snort_rules/classification.config
[+] Installing deps/snort_rules/chat.rules
[+] Installing deps/snort_rules/bad-traffic.rules
[+] Installing deps/snort_rules/backdoor.rules
[+] Installing deps/snort_rules/attack-responses.rules


[+] Compiling kmsgsd, and psadwatchd:
[+] CMD: '/usr/bin/make'
/usr/bin/gcc -Wall -O kmsgsd.c psad_funcs.c strlcpy.c strlcat.c -o kmsgsd
/usr/bin/gcc -Wall -O psadwatchd.c psad_funcs.c strlcpy.c strlcat.c -o psadwatchd


[+] Verifying compilation of fwcheck_psad.pl script:
[+] CMD: '/usr/bin/perl -c fwcheck_psad.pl'
fwcheck_psad.pl syntax OK
[+] Verifying compilation of psad perl daemon:
[+] CMD: '/usr/bin/perl -c psad'
psad syntax OK
[+] Verifying compilation of nf2csv script:
[+] CMD: '/usr/bin/perl -c nf2csv'
nf2csv syntax OK
[+] Copying nf2csv -> /tmp/pamac-build-antonelli/psad/pkg/psad/usr/bin/nf2csv
[+] Copying fwcheck_psad.pl -> /tmp/pamac-build-antonelli/psad/pkg/psad/usr/sbin/fwcheck_psad
[+] Copying psad -> /tmp/pamac-build-antonelli/psad/pkg/psad/usr/sbin/psad
[+] Copying psadwatchd -> /tmp/pamac-build-antonelli/psad/pkg/psad/usr/sbin/psadwatchd
[+] Copying kmsgsd -> /tmp/pamac-build-antonelli/psad/pkg/psad/usr/sbin/kmsgsd
[+] psad by default parses iptables log messages from the /var/log/messages
file, but you can alter this with the IPT_SYSLOG_FILE variable in the
/etc/psad/psad.conf file.
[+] Copying psad.conf -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/psad.conf
[-] Could not find the path to the psadwatchd command, you will need to manually
edit the path for the psadwatchdCmd variable in /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/psad.conf
[+] Copying protocols -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/protocols
[+] Copying signatures -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/signatures
[+] Copying pf.os -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/pf.os
[+] Copying ip_options -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/ip_options
[+] Copying auto_dl -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/auto_dl
[+] Copying snort_rule_dl -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/snort_rule_dl
[+] Copying icmp_types -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/icmp_types
[+] Copying posf -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/posf
[+] Copying icmp6_types -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/icmp6_types

[+] psad alerts will be sent to:

[email protected]

[+] Would you like alerts sent to a different address ([y]/n)?
[+] By default, psad parses all iptables log messages for scan activity.
However, psad can be configured to only parse those iptables messages
that match particular strings (that are specified in your iptables
ruleset with the --log-prefix option).

Would you like psad to only parse specific strings in iptables
messages (y/[n])?
[+] By default, psad matches Snort rules against any IP addresses, but
psad offers the ability to restrict signature matches to specific
networks with the HOME_NET variable (similar to Snort). However, psad
also offers the ability to acquire all local subnets on the local system
by parsing the output of "ifconfig", or the subnets can be restricted
to a limited set of networks.

First, is it ok to leave the HOME_NET setting as "any" ([y]/n)?
[+] psad has the capability of sending scan data via email alerts to the
DShield distributed intrusion detection system (www.dshield.org). By
default this feature is not enabled since firewall log data is sensitive,
but submitting logs to DShield provides a valuable service and assists
in generally enhancing internet security. As an optional step, if you
have a DShield user id you can edit the "DSHIELD_USER_ID" variable
in /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/psad.conf

Would you like to enable DShield alerts (y/[n])? [+] Setting hostname to "antonelli-pc" in /tmp/pamac-build-antonelli/psad/pkg/psad/etc/psad/psad.conf
[+] The latest psad signatures can be installed with "psad --sig-update"
or installed now with install.pl.

If you decide to answer 'y' to the next question, install.pl
will require DNS and network access now.

Would you like to install the latest signatures from
http://www.cipherdyne.org/psad/signatures (y/n)? [+] Installing psad.8 man page at /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psad.8
[+] Compressing manpage /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psad.8
[+] CMD: '/bin/gzip /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psad.8'
[+] Installing psadwatchd.8 man page at /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psadwatchd.8
[+] Compressing manpage /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psadwatchd.8
[+] CMD: '/bin/gzip /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/psadwatchd.8'
[+] Installing kmsgsd.8 man page at /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/kmsgsd.8
[+] Compressing manpage /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/kmsgsd.8
[+] CMD: '/bin/gzip /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man8/kmsgsd.8'
[+] mkdir /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man1, 755
[+] Installing nf2csv.1 man page at /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man1/nf2csv.1
[+] Compressing manpage /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man1/nf2csv.1
[+] CMD: '/bin/gzip /tmp/pamac-build-antonelli/psad/pkg/psad/usr/share/man/man1/nf2csv.1'
[+] Copying init-scripts/psad-init.archlinux -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/rc.d//psad
[*] Could not copy init-scripts/psad-init.archlinux -> /tmp/pamac-build-antonelli/psad/pkg/psad/etc/rc.d//psad: No such file or directory at ./install.pl line 767.
==> ERRO: Uma falha ocorreu em package().
Abortando...

Isto no terminal pelo AUR no Adicionar e Remover programas no Obrevange.
Pode ser que o arquivo do repositório esteja corrompido ou danificado.
Se for isto tentarei instalação manualmente com algum download na internet.
Xatoo






Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner
Linux banner
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts