[Oisf-devel] Crashing
Chris Wakelin
c.d.wakelin at reading.ac.uk
Tue Feb 8 17:58:43 UTC 2011
On 08/02/11 17:53, Victor Julien wrote:
> On 02/08/2011 12:18 PM, Brant Wells wrote:
>> Hi All,
>>
>> I'm currently running Suricata 1.1 Beta1 (downloaded from site)... The
>> system runs fine for several hours or days (I don't know which)... and
>> then mysteriously it will crash. The only reason I notice, is that BASE
>> quits adding new entries to its list.
>>
>> I just downloaded the GIT version and am just curious as to whether or
>> not there are some special ./configure options or places in the
>> suricata.yaml that I can look to find a crash log or stack trace or
>> something.
>
> No there are no such options. Suricata is normally built with symbols
> enabled so you should be able to get a backtrace if you enabled core
> dumps before starting Suricata.
>
> Before starting Suricata do:
> ulimit -c unlimited
>
> That should get you a core dump. Let me know if you need further assistance.
>
> Cheers,
> Victor
>
Me too, but ever since I did the "ulimit -c" yesterday (together with a
GIT update), it's behaved, so no backtraces yet ...
(I've also got a UDP rule occasionally triggering on the wrong port;
I'll see if I can get a packet dump for that.)
Chris
--
--+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+-
Christopher Wakelin, c.d.wakelin at reading.ac.uk
IT Services Centre, The University of Reading, Tel: +44 (0)118 378 8439
Whiteknights, Reading, RG6 6AF, UK Fax: +44 (0)118 975 3094
More information about the Oisf-devel
mailing list