• Support
  • Forums
  • Blogs

ossim 5.5.1 to 5.6.5 upgrade problem

ramin.nodehiramin.nodehi

New Life Form
+2
Hi, I have one ossim server and about 30 sensors over my network. Ossim Server is installed on physical hp serve and all sensors on vm servers. I had no problem and everything was ok. After an online upgrade for my server and sensors, the server and some of my sensors didn't update. Also some updated from 5.5.1 to 5.6.5 without any problem. After some investigation i found the update log and the error that it encountered:
##### Executing procedure force_install_hyperscan... #####
+ grep -q '^flags[[:space:]]*:.*[[:space:]]ssse3[[:space:]]' /proc/cpuinfo
+ export DEBIAN_FRONTEND=noninteractive
+ DEBIAN_FRONTEND=noninteractive
+ apt-get install libhyperscan4 libhtp-0.5.23-1 -o Dpkg::Options::=--force-confnew -y --allow-unauthenticated
E: Unmet dependencies. Try 'apt-get -f install' with no packages (or specify a solution).
+ unset DEBIAN_FRONTEND
+ echo 'ERROR: Failed to install libhyperscan4 and/or libhtp-0.5.23-1 (with SSSE3 support)!'
ERROR: Failed to install libhyperscan4 and/or libhtp-0.5.23-1 (with SSSE3 support)!
+ return 41
##### Procedure force_install_hyperscan exited with code: 41 #####

So i decided to update manually and used the command after jailbreak the system: apt-get -f install , but i receive another error:
sensor-XXXX:~# apt-get -f install
Reading package lists... Done
Building dependency tree
Reading state information... Done
Correcting dependencies... Done
The following extra packages will be installed:
  suricata
Suggested packages:
  libtcmalloc-minimal4
Recommended packages:
  suricata-oinkmaster snort-rules-default
The following packages will be upgraded:
  suricata
1 upgraded, 0 newly installed, 0 to remove and 114 not upgraded.
3 not fully installed or removed.
Need to get 0 B/3363 kB of archives.
After this operation, 38.9 kB of additional disk space will be used.
Do you want to continue? [Y/n] y
(Reading database ... 51186 files and directories currently installed.)
Preparing to unpack .../suricata_3%3a3.2.1-1~bpo8+1_amd64.deb ...
Stopping suricata: /etc/init.d/suricata: line 129: kill: (27271) - No such proce                                                                                        ss
invoke-rc.d: initscript suricata, action "stop" failed.
dpkg: warning: subprocess old pre-removal script returned error exit status 1
dpkg: trying script from the new package instead ...
Stopping suricata: /etc/init.d/suricata: line 129: kill: (27271) - No such proce                                                                                        ss
invoke-rc.d: initscript suricata, action "stop" failed.
dpkg: error processing archive /var/cache/apt/archives/suricata_3%3a3.2.1-1~bpo8                                                                                        +1_amd64.deb (--unpack):
 subprocess new pre-removal script returned error exit status 1
Starting suricata in IDS (af-packet) mode... done.
Errors were encountered while processing:
 /var/cache/apt/archives/suricata_3%3a3.2.1-1~bpo8+1_amd64.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)

can anyone help me about this problem ????
Thanks.

Share post:

Comments

  • Hi every body. I myself found the solution. The problem was form suricata package.
    At the command shell of the ossim, i removed the some suricata packages and the reinstalled by apt-get command. After that updated the ossim machine without any problem.
Sign In or Register to comment.