107707 – snort-2.3.2: wrong permission on log directory prevents snort start

Bug 107707 - snort-2.3.2: wrong permission on log directory prevents snort start

Summary: snort-2.3.2: wrong permission on log directory prevents snort start

Status:	VERIFIED INVALID

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All All

Importance:	High minor
Assignee:	Gentoo Netmon project

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-09-30 07:11 UTC by Chris
Modified:	2005-10-01 05:57 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Chris 2005-09-30 07:11:27 UTC

After emerging snort package (tested with snort-2.3.2), it is impossible to
start it correctly due to wrong permissions on default log directory
(/var/log/snort) :

FATAL ERROR: OpenAlertFile() => fopen() alert file
 /var/log/snort/alert: Permission denied

Permissions on this directory is as following :

drwxrwx---  57 root root 1856 Sep 30 15:49 /var/log/snort/

This should be set to snort:snort instead of root:root.

Reproducible: Always
Steps to Reproduce:
1. emerge snort
2. start snort : /etc/init.d/snort start
3. check if snort running and error on /var/log/daemon.log

Actual Results:  
Snort is not running, the following error is caughted :

FATAL ERROR: OpenAlertFile() => fopen() alert file
 /var/log/snort/alert: Permission denied

Expected Results:  
Snort should start properly.

Portage 2.0.51.22-r1 (default-linux/x86/2005.0, gcc-3.3.5-20050130,
glibc-2.3.4.20041102-r1, 2.6.11.11 i686)
=================================================================
System uname: 2.6.11.11 i686 Intel(R) Pentium(R) 4 CPU 2.00GHz
Gentoo Base System version 1.6.12
dev-lang/python:     2.3.5
sys-apps/sandbox:    1.2.10
sys-devel/autoconf:  2.13, 2.59-r6
sys-devel/automake:  1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.5
sys-devel/binutils:  2.15.92.0.2-r10
sys-devel/libtool:   1.5.18-r1
virtual/os-headers:  2.6.11-r2
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=pentium4 -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3.4/env
/usr/kde/3.4/share/config /usr/kde/3.4/shutdown /usr/kde/3/share/config
/usr/lib/X11/xkb /usr/share/config /var/bind /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d"
CXXFLAGS="-O2 -march=pentium4 -fomit-frame-pointer"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoconfig distlocks sandbox sfperms strict"
GENTOO_MIRRORS="http://ftp.belnet.be/mirror/rsync.gentoo.org/gentoo/
http://distfiles.gentoo.org http://www.ibiblio.org/pub/Linux/distributions/gentoo"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
SYNC="rsync://rsync.europe.gentoo.org/gentoo-portage"
USE="x86 X alsa apm arts avi berkdb bitmap-fonts cdr crypt cups curl dvd emboss
encode fam flac foomaticdb fortran gd gdbm gif gnome gpm gtk gtk2 guile imlib
ipv6 jpeg kde ldap libg++ libwww mad mikmod motif mp3 mpeg mysql ncurses nls ogg
oggvorbis opengl oss pam pdflib perl png python qt quicktime readline samba sdl
spell ssl svga tcpd tiff truetype truetype-fonts type1-fonts vorbis xine xml2
xmms xv zlib userland_GNU kernel_linux elibc_glibc"
Unset:  ASFLAGS, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS, MAKEOPTS, PORTDIR_OVERLAY

Comment 1 Marco Morales 2005-09-30 20:29:40 UTC

Thanks for your report but 2.3.2 isnt in portage anymore, oldest/stable ebuild 
(snort-2.3.3) already has the fix.  Thanks you n e way :)

Comment 2 Chris 2005-10-01 05:57:11 UTC

(In reply to comment #1)
> Thanks for your report but 2.3.2 isnt in portage anymore, oldest/stable ebuild 
> (snort-2.3.3) already has the fix.  Thanks you n e way :) 

Thanks for the information, I will update portage and then snort to have this fixed.
Thanks for you quick answer.