RC.39 (and 40) 'argus' segfault on Fedora Core 6

Peter Van Epp vanepp at sfu.ca
Wed Feb 28 16:01:12 EST 2007 

On Wed, Feb 28, 2007 at 03:30:58PM -0500, Carter Bullard wrote:
> Hey Michael,
> Yes you are running the program correctly.  I did add ArgusOpenInterface()
> just for rc.40.  You shouldn't be going into that code at all, really, 
> if you're
> reading a file, so let me see what's up with that.
> 
> Carter
> 

	Looks like something really wrong on RedHat or perhaps memory problems
(is the machine ecc memory or can you enable parity, some RAM doesn't do 
either though). This works fine on my Suse 10.2 box on 64 bit PowerPC:

vanepp at hcids:~> argus -X -r test.eth0.tcp -r test.eth1.tcp -w x
vanepp at hcids:~> ra -r x
   08:21:29.155232             tcp      85.94.109.175.50608     ->      142.58.101.28.smtp          2        0          122            0   CON
   08:21:38.155048     I       tcp      85.94.109.175.ident     ?>      142.58.101.28.60420         1        0           60            0   RST
   08:21:38.155056            icmp      85.94.109.175           ->      142.58.101.28               1        0           70            0   URP
   08:21:29.156385    d        tcp      85.94.109.175.50608     ->      142.58.101.28.smtp          1        6           78          601   CON
   16:00:00.000000             tcp      85.94.109.175.ident     ->      142.58.101.28.60420         0        1            0           66   REQ
   08:21:48.566009             tcp      85.94.109.175.50608     ->      142.58.101.28.smtp          0        4            0          328   FIN
   12:45:43.592922             man                  0      0                       30      1       16        7           30      2521156   STP

	I'll try it on FreeBsd 6.1 on Intel and see if its an endian or 64
bit issue perhaps. Nope, seems to work there on 32 bit Intel as well:

vanepp at r2d2% argus -X -r test.eth0.tcp -r test.eth1.tcp -w x
argus: Command not found.
vanepp at r2d2% rehash
vanepp at r2d2% argus -X -r test.eth0.tcp -r test.eth1.tcp -w x
vanepp at r2d2% ra3 -r x -n
   08:21:29.155232             tcp      85.94.109.175.50608     ->      142.58.101.28.25            2        0          122            0   CON
   08:21:38.155048   I         tcp      85.94.109.175.113       ?>      142.58.101.28.60420         1        0           60            0   RST
   08:21:38.155056            icmp      85.94.109.175           ->      142.58.101.28               1        0           70            0   URP
   08:21:29.156385    d        tcp      85.94.109.175.50608     ->      142.58.101.28.25            1        6           78          601   CON
   16:00:00.000000             tcp      85.94.109.175.113       ->      142.58.101.28.60420         0        1            0           66   REQ
   08:21:48.566009             tcp      85.94.109.175.50608     ->      142.58.101.28.25            0        4            0          328   FIN
   13:00:10.421020             man                  0      0                       30      1       16        7           30      1464636   STP

Peter Van Epp / Operations and Technical Support 
Simon Fraser University, Burnaby, B.C. Canada

More information about the argus mailing list