Remnux Upgrade Error

[Haggebuddi]

Hi.

I installed the lates .ova file to use Remnux on ESXI. "remnux upgrade" ends with the following error:

Saltstack.log saltstack.log

Are there any fixes? I can't find any obvious problems in the file.

Thanks.

[digitalsleuth]

Hi @Haggebuddi , it looks like this might not be the log file for the original installation with the error, as the contents of this log don't match what you show in the picture. The error in the log you provided indicates that you may not be using the latest CLI installer.

I would first recommend updating your installer from the [https://github.com/remnux/remnux-cli](REMnux CLI repo) and try the install again. Should that fail, please let us know and provide the saltstack.log file from that attempt.

Cheers!

[Haggebuddi]

Yeah, I know, that was weird to me. But before doing the latest try, I deleted the version folder with the saltstack file inside. So it was newly generated with the latest try where also the screenshot is from.

I will have a look and try your recommendation, thanks.

[Haggebuddi]

I installed the newest installer. When I executed remnux install command, it gave the output that remnux is already installed. So I executed remnux update and it started. After some time I got the same output:

But the /var/cache/remnux/cli subfolder had now a way older version. (2022.28.1) Here is the saltstack from this attempt. saltstack.log

[digitalsleuth]

Hi @Haggebuddi , The "update" command actually re-installs the current version in order to essentially "refresh" the current state. Try the remnux upgrade command instead and you should be fine.

[Haggebuddi]

Sadly a new error, forbidden to access the website-download.

[emirgra]

I think I found what the problem is.

https://github.com/remnux/remnux-cli/issues/125#issuecomment-1496504193

/etc/apt/sources.list.d/draios.list There are two links in this file. The second one needs to be commented on. like # deb http://download.draios.com/stable/deb stable-amd64/

after sudo apt update && sudo apt upgrade.

[digitalsleuth]

Hi @emirgra and @Haggebuddi , the reason this occurred was because of the previous update command, it attempted (from an older version) to update the draois.list file, but the URL at that time was incorrect. To resolve this issue, you can simply delete the /etc/apt/sources.list.d/draios.list file and re-run your command. It will be re-populated properly with the upgrade.

Cheers

[Haggebuddi]

Done. It fixed the download problem, but this problem still exists.

I think I will try to import the initial downloaded remnux-v7-focal-ova from the official website's Box download (https://app.box.com/s/l8uo6loohghdatius2f7icuyp14q3wp6) again and hope it works then.

@digitalsleuth Thanks for the support, I let you know then if it helped redoing everything.

[Haggebuddi]

I did a fresh import of the .ova image. Started the upgrade with "remnux upgrade" and it failed like the first time.

Saltstack.log from Folder v2022.28.1: saltstack.log

Saltstack.log from Folder v2024.21.6: saltstack.log

Any advice?

[digitalsleuth]

Hi @Haggebuddi , after looking at your recent log file, it looks like the only error is with frida-tools, which is right now a known issue. Everything else did install correctly though. The frida-tools issue should be resolved soon.

Cheers!

[Haggebuddi]

Okay, thanks. I tried the latest upgrade now like described in https://github.com/REMnux/salt-states/pull/290 which should get it to the new version, still error.

I'll wait and try the upgrade in the future again.

[sscoconutree]

Hi @digitalsleuth, I do have the same issue as well. Can you check if it has the same issue with frida-tools? I'll attach my saltstack log files.

v2022.28.1

https://github.com/sscoconutree/saltstack_logs_remnux/raw/main/saltstack-v2022_28_1.log

v2024.22.2

https://github.com/sscoconutree/saltstack_logs_remnux/raw/main/saltstack-v2024_22_2.log

Thank you!

[digitalsleuth]

Hi @sscoconutree It looks like you're experiencing the same error as another person, in that the file /opt/malwoverview/lib/python3.8/site-packages/root/.malwapi.conf seems to be missing during the install process. Everything else installed correctly. Would you be able to tell me if that file exists and, if not, which part of the path I've provided does not exist?

Cheers!

[lazydrupi]

Hi @digitalsleuth , I'm trying to install remnux from scratch and have the same error. I checked the path /opt/malwoverview/lib/python3.8/site-packages/root/.malwapi.conf and the root directory is missing. Here is a list of the /opt/malwoverview/lib/python3.8/site-packages/directory:

__pycache__                         pathlib.py
_virtualenv.pth                     pefile-2023.2.7.dist-info
_virtualenv.py                      pefile.py
backports                           peutils.py
certifi                             pip
certifi-2024.2.2.dist-info          pip-20.0.2.dist-info
charset_normalizer                  pip-20.0.2.virtualenv
charset_normalizer-3.3.2.dist-info  pkg_resources
click                               pkg_resources-0.0.0.dist-info
click-8.1.7.dist-info               pkg_resources-0.0.0.virtualenv
colorama                            polyswarm_api
colorama-0.4.6.dist-info            polyswarm_api-3.6.0.dist-info
configparser-7.0.0.dist-info        python_dateutil-2.9.0.post0.dist-info
dateutil                            python_magic-0.4.27.dist-info
decorator-5.1.1.dist-info           ratelim
decorator.py                        ratelim-0.1.6.dist-info
easy_install.py                     requests
future                              requests-2.32.3.dist-info
future-0.18.3.dist-info             setuptools
geocoder                            setuptools-44.0.0.dist-info
geocoder-1.38.1.dist-info           setuptools-44.0.0.virtualenv
home                                simplejson
idna                                simplejson-3.19.2.dist-info
idna-3.7.dist-info                  six-1.16.0.dist-info
libfuturize                         six.py
libpasteurize                       urllib3
magic                               urllib3-2.2.1.dist-info
malwoverview                        validators
malwoverview-5.4.4.dist-info        validators-0.28.3.dist-info
ordlookup                           wheel
past                                wheel-0.34.2.dist-info
pathlib-1.0.1.dist-info             wheel-0.34.2.virtualenv

I've tried to rerun the install multiple time to no avail. upgrade will not function as remnux cli reports not being installed. But the rest of the system seems to be running. Thanks in advance for the help!

[lennyzeltser]

@lazydrupi, I just issued a new REMnux release (v2024.23.1) to address this issue. When you get a chance, please run remnux upgrade again to see if it works.

[lazydrupi]

Hi @lennyzeltser , I just ran the remnux upgrade and it worked flawlessly. Thank you very much!