bro manager crash
449 views
Skip to first unread message
sech...@gmail.com
Oct 25, 2016, 12:16:56 PM10/25/16
to security-onion
hi
just install SecurityOnipn
i notice that bro is not working , when i try to start it i'm getting this error:
so@so-virtual-machine:$ sudo nsm_sensor_ps-start --only-bro
Starting: Bro
removing old policies in /nsm/bro/spool/installed-scripts-do-not-touch/site ...
removing old policies in /nsm/bro/spool/installed-scripts-do-not-touch/auto ...
creating policy directories ...
installing site policies ...
generating cluster-layout.bro ...
generating local-networks.bro ...
generating broctl-config.bro ...
generating broctl-config.sh ...
updating nodes ...
Error: error occurred while trying to send mail: send-mail: /usr/sbin/sendmail not found
starting manager (was crashed) ...
manager terminated immediately after starting; check output with "diag"
i have 2 server
master
sensor
what i'm doing wrong ?
just install SecurityOnipn
i notice that bro is not working , when i try to start it i'm getting this error:
so@so-virtual-machine:$ sudo nsm_sensor_ps-start --only-bro
Starting: Bro
removing old policies in /nsm/bro/spool/installed-scripts-do-not-touch/site ...
removing old policies in /nsm/bro/spool/installed-scripts-do-not-touch/auto ...
creating policy directories ...
installing site policies ...
generating cluster-layout.bro ...
generating local-networks.bro ...
generating broctl-config.bro ...
generating broctl-config.sh ...
updating nodes ...
Error: error occurred while trying to send mail: send-mail: /usr/sbin/sendmail not found
starting manager (was crashed) ...
manager terminated immediately after starting; check output with "diag"
i have 2 server
master
sensor
what i'm doing wrong ?
Wes
Oct 25, 2016, 12:22:03 PM10/25/16
to security-onion
Have you installed all updates?
Have you tried the following to help identify the issue?
"sudo broctl diag"
Have you tried "sudo broctl install" to update the Bro config?
Have you made any changes to your Bro config?
https://groups.google.com/d/msg/security-onion/pC28ASIl79o/d0gzEFgBCygJ
Thanks,
Wes
sech...@gmail.com
Oct 27, 2016, 2:24:37 AM10/27/16
to security-onion
hi
sudo broctl diag - show problem in config local netorks - fix it and it's working - thanks!
btw - what updates do you mean? i installed Security Onion 14.04 ISO image
sech...@gmail.com
Oct 30, 2016, 4:27:26 AM10/30/16
to security-onion
On Tuesday, October 25, 2016 at 7:22:03 PM UTC+3, Wes wrote:
hi
after restat the problem return , it's always bring back the bad configuration for the local network , why is that ? how can i change it so it will be persistence ?
Wes
Oct 30, 2016, 10:15:53 AM10/30/16
to security-onion
What configuration change did you make previously (specifically, what file)?
Thanks,
Wes
Reply all
Reply to author
Forward
0 new messages