search

LTW-GCR-CSOC / csoc-installation-scripts

GCR - Cybersecurity Operations Center Project
GNU General Public License v3.0
15 stars 9 forks source link

honeypots.sh - Configuration file '/etc/gnome/defaults.list' #20

Closed as22323 closed 6 years ago

as22323 commented 6 years ago

running custom honeypots.sh 

SCRIPTSDIR=$HOME/csoc-installation-scripts-master/

INSTALL_REFRESH="yes"
INSTALL_CLEANUP="no"

INSTALL_DIONAEA="yes" # yes or no.
INSTALL_DIONAEALOGVIEWER="no"

#INSTALL_COWRIE="s"
INSTALL_COWRIE="no"
#INSTALL_COWRIELOGVIEWER="yes"
INSTALL_COWRIELOGVIEWER="no"

INSTALL_OSSEC="no"
INSTALL_OPENVAS="no"
INSTALL_AWSIOT="no"
INSTALL_MENDER="no"
INSTALL_RP="no"

ERROR THROWN

Setting up desktop-file-utils (0.22-1ubuntu5.1) ...

Configuration file '/etc/gnome/defaults.list'
 ==> Modified (by you or by a script) since installation.
 ==> Package distributor has shipped an updated version.
   What would you like to do about it ?  Your options are:
    Y or I  : install the package maintainer's version
    N or O  : keep your currently-installed version
      D     : show the differences between the versions
      Z     : start a shell to examine the situation
 The default action is to keep your current version.
as22323 commented 6 years ago

For a new install, using the settings in this post, question came up again.

as22323 commented 6 years ago

Here is more context surrounding the "Error Thrown" 

Setting up sudo (1.8.16-0ubuntu1.5) ...
Setting up apt-transport-https (1.2.24) ...
Setting up libisc160:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up libdns162:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up libisccc140:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up libisccfg140:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up libbind9-140:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up liblwres141:armhf (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up bind9-host (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up dnsutils (1:9.10.3.dfsg.P4-8ubuntu1.8) ...
Setting up librtmp1:armhf (2.4+20151223.gitfa8646d-1ubuntu0.1) ...
Setting up nano (2.5.3-2ubuntu2) ...
Setting up openssl (1.0.2g-1ubuntu4.8) ...
Setting up tcpdump (4.9.2-0ubuntu0.16.04.1) ...
Installing new version of config file /etc/apparmor.d/usr.sbin.tcpdump ...
Setting up wget (1.17.1-1ubuntu1.2) ...
Setting up grub-common (2.02~beta2-36ubuntu3.12) ...
Installing new version of config file /etc/grub.d/10_linux ...
update-rc.d: warning: start and stop actions are no longer supported; falling ba                                                                             ck to defaults
Setting up python3-problem-report (2.20.1-0ubuntu2.10) ...
Setting up python3-apport (2.20.1-0ubuntu2.10) ...
Setting up apport (2.20.1-0ubuntu2.10) ...
insserv: warning: current start runlevel(s) (empty) of script `apport' overrides                                                                              LSB defaults (2 3 4 5).
insserv: warning: current stop runlevel(s) (2 3 4 5) of script `apport' override                                                                             s LSB defaults (empty).
apport-forward.socket is a disabled or a static unit, not starting it.
Setting up mate-desktop-common (1.16.2-1~xenial1.0) ...
Setting up mate-terminal-common (1.16.3-1~xenial1.0) ...
Setting up mate-terminal (1.16.3-1~xenial1.0) ...
Setting up libmate-desktop-2-17:armhf (1.16.2-1~xenial1.0) ...
Setting up mate-desktop (1.16.2-1~xenial1.0) ...
Setting up archdetect-deb (1.117ubuntu2.2) ...
Setting up binutils (2.26.1-1ubuntu1~16.04.4) ...
Setting up caja-common (1.16.6-1~xenial1.1) ...
Setting up desktop-file-utils (0.22-1ubuntu5.1) ...

Configuration file '/etc/gnome/defaults.list'
 ==> Modified (by you or by a script) since installation.
 ==> Package distributor has shipped an updated version.
   What would you like to do about it ?  Your options are:
    Y or I  : install the package maintainer's version
    N or O  : keep your currently-installed version
      D     : show the differences between the versions
      Z     : start a shell to examine the situation
 The default action is to keep your current version.
*** defaults.list (Y/I/N/O/D/Z) [default=N] ? y
Installing new version of config file /etc/gnome/defaults.list ...
Setting up gvfs-common (1.28.2-1ubuntu1~16.04.2) ...
Setting up gvfs-libs:armhf (1.28.2-1ubuntu1~16.04.2) ...
Setting up gvfs-daemons (1.28.2-1ubuntu1~16.04.2) ...
Setting up gvfs:armhf (1.28.2-1ubuntu1~16.04.2) ...
Setting up libcaja-extension1:armhf (1.16.6-1~xenial1.1) ...
Setting up libplist3:armhf (1.12-3.1ubuntu0.16.04.1) ...
Setting up gvfs-bin (1.28.2-1ubuntu1~16.04.2) ...
Setting up gvfs-backends (1.28.2-1ubuntu1~16.04.2) ...
Setting up gvfs-fuse (1.28.2-1ubuntu1~16.04.2) ...
Setting up cryptsetup-bin (2:1.6.6-5ubuntu2.1) ...
Setting up dnsmasq-base (2.75-1ubuntu0.16.04.2) ...
Setting up libdpkg-perl (1.18.4ubuntu1.2) ...
Setting up dpkg-dev (1.18.4ubuntu1.2) ...
Setting up engrampa-common (1.16.1-1~xenial1.0) ...
Setting up firefox (55.0.2+build1-0ubuntu0.16.04.1) ...
Please restart all running instances of firefox, or you will experience problems                                                                             .
Setting up libfwup0:armhf (0.5-2ubuntu5) ...
Setting up fwupdate (0.5-2ubuntu5) ...
as22323 commented 6 years ago

After running honeypots.sh the Dionaea components did not get installed. (i.e. opt/dionaea folder does not exist). I had to run 'sudo ./dionaeainstall.sh' after running 'honeypots.sh' to get dionaea installed. If running dionaeainstall.sh before honeypots.sh, dionaeainstall.sh will fail when trying to run wget.

CUGCR commented 6 years ago

should only run from honeypots.sh