problema SNORT / BARNYEARD2

ivan arrais
(usa Debian)

Enviado em 17/10/2012 - 19:30h

Gelera, estou implementando o snort no meu servidor, tudo estava ocorrendo perfeitamente, ate que quando eu fui instalar o barnyeard2 e, consequentemente fui inicia-lo ocorreu um problema ... será que voçês podem me ajudar?

-*> Barnyard2 <*-
/ ,,_ \ Version 2.1.10 (Build 310)
|o" )~| By Ian Firns (SecurixLive): http://www.securixlive.com/
+ '''' + (C) Copyright 2008-2012 Ian Firns <firnsy@securixlive.com>

Using waldo file '/etc/snort/bylog.waldo':
spool directory = /var/log/snort
spool filebase = snort.log
time_stamp = 1350504001
record_idx = 1
Opened spool file '/var/log/snort/snort.log.1350504001'
WARNING [dbProcessSignatureInformation()]: [Event: 1] with [gid: 1] [sid: 10000001] [rev: 0] [classification: 0] [priority: 0]
was not found in barnyard2 signature cache, this could lead to display inconsistency.
To prevent this warning, make sure that your sid-msg.map and gen-msg.map file are up to date with the snort process logging to the spool file.
The new inserted signature will not have its information present in the sig_reference table.
Note that the message inserted in the signature table will be snort default message "Snort Alert [gid:sid:revision]"
You can allways update the message via a SQL query if you want it to be displayed correctly by your favorite interface

barnyard2: spo_database.c:1665: dbProcessSignatureInformation: Assertion `data->mc.cacheSignatureHead->obj.db_id != 0' failed.


Espero ajuda, por favor!!!
Desde ja, muito obrigado!!!
Att;
Ivan Arrais