I also receive:
nsm.service
Loaded: not-found (reason: no such file or directory)
Active: inactive (dead)
I can't understand how these directories and services had such a big failure. The system has just been running / collecting for a week. There's been no interruption to my knowledge, but maybe that's incorrect. It looks like my only option is a full reinstallation.
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to security-onion@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.
I see that 5 days ago /var/log/nsm/pcap_agent.log.xxxx started failing to connect to the master on port 7736.
https://github.com/Security-Onion-Solutions/security-onion/wiki/Help
Are you able to manually restart the netsniff_ng service?
sudo nsm_sensor_ps-restart --only-pcap
Steven MalmRoc-Analyst ILyrical Security174 Spadina Ave, Suite 400, Toronto, ON, Canada - M5T 2C2
On Thu, Aug 9, 2018 at 1:34 PM, Joseph <jc5...@gmail.com> wrote:
/var/log/error shows pam_kwallet.so /lib/security/pam_kwallet.so: no such file or directory
/var/log/syslog looks ok.
netstat: ssh is established with master, port 4506 4505 time wait
ping ok
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To post to this group, send email to securit...@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To post to this group, send email to securit...@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.
This is confusing because the system was perfect, i was away for a week, and came back. I'm not sure what could have happened, but don't want to get the client to plug in the media so I can reinstall the OS. any thoughts?
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To post to this group, send email to securit...@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.