[Oisf-users] assistance with suricata-update and no rules found
Jason Ish
jason.ish at oisf.net
Thu Feb 21 16:30:43 UTC 2019
Hi Jeff,
On 2019-02-21 10:26 a.m., Jeff Dyke wrote:
> I've been using oinkmaster to update suricata rules for the last few
> years (before suricata-update). I'm going through the process of
> migrating and am almost there, but get these warnings on start up:
>
> 21/2/2019 -- 16:10:36 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No
> rule files match the pattern /var/lib/suricata/rules/suricata.rules
> 21/2/2019 -- 16:10:36 - <Warning> - [ERRCODE:
> SC_ERR_NO_RULES_LOADED(43)] - 1 rule files specified, but no rule was
> loaded at all!
>
> $> wc -l /var/lib/suricata/rules/suricata.rules
> 27012 /var/lib/suricata/rules/suricata.rules
The first thing I'd check is the permissions. Can the user suricata is
running as open all the directories and the rule file?
Jason
More information about the Oisf-users
mailing list