argus with sasl2 installation

Fri Mar 23 13:01:08 EDT 2007

Well, that was painful.

Ok, so let the sasl2 experimentation/testing begin.
If anyone has any problems holler.
I have test radium() to the point where it can support
any number of connections with different argus sources
using different mechanisms on each and it does the
right thing.

Remember that if you attach to an argus source that
requires authentication, and you haven't set it up right,
the ra* programs will prompt you for username/passwords,
so if you start something and it hangs, it maybe waiting for
input.  The rarc file allows you to set user/auth and passwords,
so you don't have to.

Just to point out that ra* now supports the "-M saslmech=" option
so if you want specify a specific method in your testing, you can.
The best way, of course is to set the RA_[MIN | MAX]_SSF
variables and let the server and client negotiate the appropriate
mech.  Thats in the ra.1 manpage.

Carter

On Mar 23, 2007, at 12:33 PM, Peter Van Epp wrote:

> On Thu, Mar 22, 2007 at 11:54:57PM -0400, Carter Bullard wrote:
>> OK, so that makes some sense.  I'll have some new code up in a few
>> minutes.
>> Carter
>>
>
> 	The new version of rc.42 from last night successfully configs and
> builds (with one warning on FreeBSD) with --with-sasl=/usr/local on  
> both
> FreeBSD 6.1 and OpenBSD 3.8 (I need to upgrade to 4.0 some  
> time :-)) so
> that seems to have gotten it. Even radium built successfully this  
> time.
> As I get time I'll try it on all the rest of my machines and see what
> happens ...
> 	The FreeBSD warning:
>
> gcc -O3 -pthread -I. -I../include -I../common -I/usr/local/include - 
> DPACKAGE_NAME=\"\" -DPACKAGE_TARNAME=\"\" -DPACKAGE_VERSION=\"\" - 
> DPACKAGE_STRING=\"\" -DPACKAGE_BUGREPORT=\"\" -DHAVE_VFPRINTF=1 - 
> DHAVE_STRCASECMP=1 -DHAVE_STRLCAT=1 -DHAVE_STRLCPY=1 - 
> DHAVE_STRDUP=1 -DHAVE_STRFTIME=1 -DHAVE_SETLINEBUF=1 -DHAVE_ALARM=1  
> -DSTDC_HEADERS=1 -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 - 
> DHAVE_STDLIB_H=1 -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 - 
> DHAVE_STRINGS_H=1 -DHAVE_INTTYPES_H=1 -DHAVE_STDINT_H=1 - 
> DHAVE_UNISTD_H=1 -DHAVE_INTTYPES_H=1 -DARGUS_SASL=1 - 
> DARGUS_THREADS=1 -DHAVE_TCP_WRAPPER=1 -DHAVE_SYS_SOCKIO_H=1 - 
> DHAVE_STRING_H=1 -DHAVE_FCNTL_H=1 -DHAVE_SYS_FILE_H=1 - 
> DHAVE_SYSLOG_H=1 -DHAVE_ETHER_HOSTTON=1 -DHAVE_STRERROR=1 - 
> DHAVE_STRTOF=1 -DHAVE_SRANDOMDEV=1 -DARGUS_CURSES=1 - 
> DCONFIG_X86_BSWAP=1 -DSTDC_HEADERS=1 -c ./print-arp.c
> ./print-arp.c:65:1: warning: "ar_sha" redefined
> In file included from /usr/include/netinet/if_ether.h:37,
>                  from ../include/compat.h:168,
>                  from ../include/argus_util.h:32,
>                  from ./print-arp.c:27:
> /usr/include/net/if_arp.h:75:1: warning: this is the location of  
> the previous definition
> ./print-arp.c:66:1: warning: "ar_spa" redefined
> /usr/include/net/if_arp.h:76:1: warning: this is the location of  
> the previous definition
> ./print-arp.c:67:1: warning: "ar_tha" redefined
> /usr/include/net/if_arp.h:77:1: warning: this is the location of  
> the previous definition
> ./print-arp.c:68:1: warning: "ar_tpa" redefined
> /usr/include/net/if_arp.h:78:1: warning: this is the location of  
> the previous definition
>
> 	It is complaining because rdump/print-arp.c at line 65 has a define
> for ar_sha and friends that is already included from if_arp.h. Adding
>
> ifndef _NET_IF_ARP_H_
> #define _NET_IF_ARP_H_
> 	
> (which is in if_arp.h on FreeBSD) should fix this.
>
> 	Clients on Solaris 2.9 still has the same problem (neither pcap nor
> sasl there yet so clients is the only thing that will even try :-)).
>
> gcc -O3 -pthread  -I. -I../include  -DPACKAGE_NAME=\"\" - 
> DPACKAGE_TARNAME=\"\" -DPACKAGE_VERSION=\"\" -DPACKAGE_STRING=\"\" - 
> DPACKAGE_BUGREPORT=\"\" -DLBL_ALIGN=1 -DHAVE_VFPRINTF=1 - 
> DHAVE_STRCASECMP=1 -DHAVE_STRLCAT=1 -DHAVE_STRLCPY=1 - 
> DHAVE_STRDUP=1 -DHAVE_STRFTIME=1 -DHAVE_SETLINEBUF=1 -DHAVE_ALARM=1  
> -DSTDC_HEADERS=1 -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 - 
> DHAVE_STDLIB_H=1 -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 - 
> DHAVE_STRINGS_H=1 -DHAVE_INTTYPES_H=1 -DHAVE_UNISTD_H=1 - 
> Du_int8_t=unsigned\ char -Du_int16_t=unsigned\ short - 
> Du_int32_t=unsigned\ int -Du_int64_t=unsigned\ long\ long - 
> DHAVE_INTTYPES_H=1 -D_FILE_OFFSET_BITS=64 -DARGUS_THREADS=1 - 
> DHAVE_SYS_SOCKIO_H=1 -DHAVE_STRING_H=1 -DHAVE_FCNTL_H=1 - 
> DHAVE_SYS_FILE_H=1 -DHAVE_SYSLOG_H=1 -DHAVE_STRERROR=1 - 
> DARGUS_CURSES=1 -DHAVE_SOLARIS=1 -DSTDC_HEADERS=1  -DARGUS_SYSLOG - 
> c ./argus_client.c
> gcc: unrecognized option `-pthread'
> ./argus_client.c: In function `ArgusGenerateRecordStruct':
> ./argus_client.c:2681: error: invalid lvalue in unary `&'
> ./argus_client.c:2687: error: invalid lvalue in unary `&'
> ./argus_client.c:2768: error: invalid lvalue in unary `&'
> make[1]: *** [argus_client.o] Error 1
>
> and
>
> gcc -O3 -pthread  -I. -I../include -I../common  -DPACKAGE_NAME=\"\"  
> -DPACKAGE_TARNAME=\"\" -DPACKAGE_VERSION=\"\" -DPACKAGE_STRING=\"\"  
> -DPACKAGE_BUGREPORT=\"\" -DLBL_ALIGN=1 -DHAVE_VFPRINTF=1 - 
> DHAVE_STRCASECMP=1 -DHAVE_STRLCAT=1 -DHAVE_STRLCPY=1 - 
> DHAVE_STRDUP=1 -DHAVE_STRFTIME=1 -DHAVE_SETLINEBUF=1 -DHAVE_ALARM=1  
> -DSTDC_HEADERS=1 -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 - 
> DHAVE_STDLIB_H=1 -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 - 
> DHAVE_STRINGS_H=1 -DHAVE_INTTYPES_H=1 -DHAVE_UNISTD_H=1 - 
> Du_int8_t=unsigned\ char -Du_int16_t=unsigned\ short - 
> Du_int32_t=unsigned\ int -Du_int64_t=unsigned\ long\ long - 
> DHAVE_INTTYPES_H=1 -D_FILE_OFFSET_BITS=64 -DARGUS_THREADS=1 - 
> DHAVE_SYS_SOCKIO_H=1 -DHAVE_STRING_H=1 -DHAVE_FCNTL_H=1 - 
> DHAVE_SYS_FILE_H=1 -DHAVE_SYSLOG_H=1 -DHAVE_STRERROR=1 - 
> DARGUS_CURSES=1 -DHAVE_SOLARIS=1 -DSTDC_HEADERS=1  -c ./print-ether.c
> gcc: unrecognized option `-pthread'
> ./print-ether.c: In function `ether_hdr_print':
> ./print-ether.c:51: error: cannot convert to a pointer type
> ./print-ether.c:52: error: cannot convert to a pointer type
> make[1]: *** [print-ether.o] Error 1
>
>
>