search

samir-araujo / apache-scalp

Automatically exported from code.google.com/p/apache-scalp
0 stars 0 forks source link

C++ Changes and output #17

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Compile
2. Run: scalp -l ./tmp/$filename -f ./default_filter_mod.xml -o ./scalp-output 
--html

What is the expected output? What do you see instead?

- Expected an html report (as the python script does)
- Got only a log file

What version of the product are you using? On what operating system?

SVN version (latest)

Please provide any additional information below.

Hi,

Nice work!

I have tried out your software today and I found 1-2 interesting things I 
thought you might want to know. I had to modify a bit the C/C++ version in 
order to compile:

A. added some missing headers
B. Changed the Makefile (all libs ($OFLAGS) at the end of the line, remove 
architecture)

Attached is the diff file (System info ad the end)... 

Running scalp as mentioned above created a log file in the same directory but 
no html output so the C version does not work for me. (I don't know if it is in 
early dev stage or so...)

Something that may also be interesting is the exec. times. I may have messed up 
by changing the make file but it seems that python runs faster! 

 - C output:
507975 lines analyzed in 329.02 seconds
4328 possible warnings found

 - python output
Loading XML file './default_filter_mod.xml'...
Processing the file './tmp/access.log'...
Scalp results:
        Processed 507460 lines over 507975
        Found 5049 attack patterns in 277.271566 s
Generating output in ./scalp-output/access.log_scalp_*

real    4m38.187s
user    4m37.505s
sys     0m0.088s

(The errors/warnings above are all for xss)

My System Info:

* uname -a
Linux urban-uni 3.2.0-30-generic #48-Ubuntu SMP Fri Aug 24 16:52:48 UTC 2012 
x86_64 x86_64 x86_64 GNU/Linux

* cat /etc/lsb-release 
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=12.04
DISTRIB_CODENAME=precise
DISTRIB_DESCRIPTION="Ubuntu 12.04.1 LTS"

* g++ -v
Using built-in specs.
COLLECT_GCC=g++
COLLECT_LTO_WRAPPER=/usr/lib/gcc/x86_64-linux-gnu/4.6/lto-wrapper
Target: x86_64-linux-gnu
Configured with: ../src/configure -v --with-pkgversion='Ubuntu/Linaro 
4.6.3-1ubuntu5' --with-bugurl=file:///usr/share/doc/gcc-4.6/README.Bugs 
--enable-languages=c,c++,fortran,objc,obj-c++ --prefix=/usr 
--program-suffix=-4.6 --enable-shared --enable-linker-build-id 
--with-system-zlib --libexecdir=/usr/lib --without-included-gettext 
--enable-threads=posix --with-gxx-include-dir=/usr/include/c++/4.6 
--libdir=/usr/lib --enable-nls --with-sysroot=/ --enable-clocale=gnu 
--enable-libstdcxx-debug --enable-libstdcxx-time=yes --enable-gnu-unique-object 
--enable-plugin --enable-objc-gc --disable-werror --with-arch-32=i686 
--with-tune=generic --enable-checking=release --build=x86_64-linux-gnu 
--host=x86_64-linux-gnu --target=x86_64-linux-gnu
Thread model: posix
gcc version 4.6.3 (Ubuntu/Linaro 4.6.3-1ubuntu5)

Hope it helps a bit. Let me know if you need any more info...

Regards,

Andreas

Original issue reported on code.google.com by bodozog...@gmail.com on 8 Oct 2012 at 10:50

Attachments: