scirius icon indicating copy to clipboard operation
scirius copied to clipboard
verified publisher icon StamusNetworks

Error Add public sourse

Open esmelnikov opened this issue 7 years ago • 5 comments

When I try to add the source "Abuse.ch SSL Blacklist" through the interface "Add public sourse" I get the following list of errors: (Scirius CE v3.0.0.)

2018-10-11_091000

esmelnikov avatar Oct 11 '18 04:10 esmelnikov

Seems your Suricata installation is an older version - needs to updated. Also look at /etc/scirius/local_settings.py to see if you have the correct path for the unix socket. (10x @regit )

pevma avatar Oct 11 '18 06:10 pevma

Path in /etc/scirius/local_settings.py correct. Suricata version 4.1.0-dev (rev cba41207)

esmelnikov avatar Oct 11 '18 08:10 esmelnikov

Could you share the path please as it is in the config ?

pevma avatar Oct 11 '18 08:10 pevma

SURICATA_UNIX_SOCKET = "/var/run/suricata/suricata-command.socket"

esmelnikov avatar Oct 11 '18 08:10 esmelnikov

Yes - i can confirm. It seems the rules would need to be updated to use the latest suri dev tls keywords. Will investigate further.

pevma avatar Oct 11 '18 11:10 pevma