Error Add public sourse

StamusNetworks / scirius

Scirius is a web application for Suricata ruleset management and threat hunting.

GNU General Public License v3.0

621 stars 148 forks source link

Error Add public sourse #156

Open esmelnikov opened 5 years ago

esmelnikov commented 5 years ago

When I try to add the source "Abuse.ch SSL Blacklist" through the interface "Add public sourse" I get the following list of errors: (Scirius CE v3.0.0.)

2018-10-11_091000

pevma commented 5 years ago

Seems your Suricata installation is an older version - needs to updated. Also look at /etc/scirius/local_settings.py to see if you have the correct path for the unix socket. (10x @regit )

esmelnikov commented 5 years ago

Path in /etc/scirius/local_settings.py correct. Suricata version 4.1.0-dev (rev cba41207)

pevma commented 5 years ago

Could you share the path please as it is in the config ?

esmelnikov commented 5 years ago

SURICATA_UNIX_SOCKET = "/var/run/suricata/suricata-command.socket"

pevma commented 5 years ago

Yes - i can confirm. It seems the rules would need to be updated to use the latest suri dev tls keywords. Will investigate further.