Re: [Snort-users] 2.2.0RC1 crash
This is a discussion on Re: [Snort-users] 2.2.0RC1 crash within the Snort forums, part of the System Security and Security Related category; Hm. That message is generated when a malloc fails, sounds like the Snort process ran itself out of memory? Perhaps ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
07-06-2004
|
|||
|
|||
Re: [Snort-users] 2.2.0RC1 crash
Hm. That message is generated when a malloc fails, sounds like the
Snort process ran itself out of memory? Perhaps we have a memory leak or some such. Can you please read the BUGS file and give us a full report? -Marty On Jul 2, 2004, at 11:53 AM, sekure wrote: > I compiled and ran the snort 2.2.0-RC1 binary on Solaris 8, in 32-bit > mode. > > About 5-10 minutes after launching 3 snort processes (i have 3 > interfaces I am sniffing on), all 3 crash at the exact same time. > This happened twice with similar errors.... > > Jul 2 11:43:47 inet-ids01 snort[13190]: [ID 379120 daemon.error] > FATAL ERROR: PrintNetData(): Failed allocating C1F bytes! (Length: > 2E8) > Jul 2 11:43:47 inet-ids01 snort[13170]: [ID 379120 daemon.error] > FATAL ERROR: PrintNetData(): Failed allocating 1777 bytes! (Length: > 5A8) > Jul 2 11:43:47 inet-ids01 snort[13180]: [ID 379120 daemon.error] > FATAL ERROR: PrintNetData(): Failed allocating 17B9 bytes! (Length: > 5B4) > > i couldn't find the core files, don't think any were generated. > > > ------------------------------------------------------- > This SF.Net email sponsored by Black Hat Briefings & Training. > Attend Black Hat Briefings & Training, Las Vegas July 24-29 - > digital self defense, top technical experts, no vendor pitches, > unmatched networking opportunities. Visit www.blackhat.com > _______________________________________________ > Snort-users mailing list > Snort-users@lists.sourceforge.net > Go to this URL to change user options or unsubscribe: > https://lists.sourceforge.net/lists/...fo/snort-users > Snort-users list archive: > http://www.geocrawler.com/redir-sf.p...st=snort-users > > -- Martin Roesch - Founder/CTO, Sourcefire Inc. - (410)290-1616 Sourcefire: Intelligent Security Monitoring roesch@sourcefire.com - http://www.sourcefire.com Snort: Open Source Network IDS - http://www.snort.org ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
