analysisd error when trying to install
230 views
Skip to first unread message
Scott Mortimer
Nov 14, 2010, 11:24:25 PM11/14/10
to ossec-list
Hello,
I am trying to install OSSEC on an Ubuntu 10.04 LTS server. I keep
getting the following error and no manner of Googling about has turned
up any answers as to the cause. I hope someone has an idea of what I
need to look at to get it compiled. Thanks!
*** Making analysisd ***
make[1]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd'
cd ./cdb; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/cdb'
gcc -I../ -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"cdb\" -DXML_VAR=\"var\" -
DOSSECHIDS -c cdb.c cdb_hash.c cdb_make.c uint32_pack.c
uint32_unpack.c
ar cru cdb.a cdb.o cdb_hash.o cdb_make.o uint32_pack.o uint32_unpack.o
ar cru cdb_make.a cdb.o cdb_hash.o cdb_make.o uint32_pack.o
uint32_unpack.o
ranlib cdb.a
ranlib cdb_make.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
cdb'
cd ./alerts; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/alerts'
gcc -I../ -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"alerts\" -DXML_VAR=\"var\" -
DOSSECHIDS -c mail.c log.c exec.c getloglocation.c
ar cru alerts.a mail.o log.o exec.o getloglocation.o
ranlib alerts.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
alerts'
cd ./decoders; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/decoders'
cd plugins; make;
make[3]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/decoders/plugins'
gcc -g -Wall -I../../../ -I../../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"ossec-analysisd\" -DXML_VAR=\"var
\" -DOSSECHIDS -I../../ -c *.c
make[3]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
decoders/plugins'
gcc -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec\" -
DLOCAL -DUSEINOTIFY -DARGV0=\"ossec-analysisd\" -DXML_VAR=\"var\" -
DOSSECHIDS -I../ -c *.c
ar cru decoders.a *.o plugins/*.o
ranlib decoders.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
decoders'
cd ./compiled_rules; make;
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/compiled_rules'
./register_rule.sh build
make[2]: execvp: ./register_rule.sh: Permission denied
make[2]: *** [plugins] Error 127
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
compiled_rules'
make[1]: *** [logaudit] Error 2
make[1]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/
analysisd'
Error Making analysisd
make: *** [all] Error 1
Error 0x5.
Building error. Unable to finish the installation.
I am trying to install OSSEC on an Ubuntu 10.04 LTS server. I keep
getting the following error and no manner of Googling about has turned
up any answers as to the cause. I hope someone has an idea of what I
need to look at to get it compiled. Thanks!
*** Making analysisd ***
make[1]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd'
cd ./cdb; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/cdb'
gcc -I../ -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"cdb\" -DXML_VAR=\"var\" -
DOSSECHIDS -c cdb.c cdb_hash.c cdb_make.c uint32_pack.c
uint32_unpack.c
ar cru cdb.a cdb.o cdb_hash.o cdb_make.o uint32_pack.o uint32_unpack.o
ar cru cdb_make.a cdb.o cdb_hash.o cdb_make.o uint32_pack.o
uint32_unpack.o
ranlib cdb.a
ranlib cdb_make.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
cdb'
cd ./alerts; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/alerts'
gcc -I../ -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"alerts\" -DXML_VAR=\"var\" -
DOSSECHIDS -c mail.c log.c exec.c getloglocation.c
ar cru alerts.a mail.o log.o exec.o getloglocation.o
ranlib alerts.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
alerts'
cd ./decoders; make
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/decoders'
cd plugins; make;
make[3]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/decoders/plugins'
gcc -g -Wall -I../../../ -I../../../headers -DDEFAULTDIR=\"/var/ossec
\" -DLOCAL -DUSEINOTIFY -DARGV0=\"ossec-analysisd\" -DXML_VAR=\"var
\" -DOSSECHIDS -I../../ -c *.c
make[3]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
decoders/plugins'
gcc -g -Wall -I../../ -I../../headers -DDEFAULTDIR=\"/var/ossec\" -
DLOCAL -DUSEINOTIFY -DARGV0=\"ossec-analysisd\" -DXML_VAR=\"var\" -
DOSSECHIDS -I../ -c *.c
ar cru decoders.a *.o plugins/*.o
ranlib decoders.a
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
decoders'
cd ./compiled_rules; make;
make[2]: Entering directory `/home/scott/ossec-hids-2.5.1/src/
analysisd/compiled_rules'
./register_rule.sh build
make[2]: execvp: ./register_rule.sh: Permission denied
make[2]: *** [plugins] Error 127
make[2]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/analysisd/
compiled_rules'
make[1]: *** [logaudit] Error 2
make[1]: Leaving directory `/home/scott/ossec-hids-2.5.1/src/
analysisd'
Error Making analysisd
make: *** [all] Error 1
Error 0x5.
Building error. Unable to finish the installation.
Scott Closter
Nov 15, 2010, 12:03:09 AM11/15/10
to ossec...@googlegroups.com
Hi Scott. I installed 2.5.1 on 10.04 LTS using these slightly outdated
instructions and didn't have any issues at all.
instructions and didn't have any issues at all.
http://acidborg.wordpress.com/2009/10/08/how-to-install-and-configure-os
sec-in-ubuntu-server-9-04/
(Mind you there was no need to compile).
Scott Closter | | CU Technical & Administrative Services Corp. | 250
627 3654
dan (ddp)
Nov 15, 2010, 10:08:57 AM11/15/10
to ossec...@googlegroups.com
Make sure src/analysisd/compiled_rules/register_rule.sh is executable
and you're running the install.sh as root.
Scott Mortimer
Nov 16, 2010, 9:18:46 AM11/16/10
to ossec-list
Excellent, thanks Dan. After making the analysisd script executable,
the entire thing compiled flawlessly.
On Nov 15, 4:08 pm, "dan (ddp)" <ddp...@gmail.com> wrote:
the entire thing compiled flawlessly.
On Nov 15, 4:08 pm, "dan (ddp)" <ddp...@gmail.com> wrote:
Reply all
Reply to author
Forward
0 new messages