argus fails with Segment Fault
Carter Bullard
carter at qosient.com
Sat Oct 16 15:37:30 EDT 2010
Hey Sunjeet,
Try argus-3.0.3.18, which is the release candidate for argus-3.0.4.
http://qosient.com/argus/dev/argus-latest.tar.gz
This works on the file you sent.
Carter
On Oct 16, 2010, at 12:56 PM, Sunjeet Singh wrote:
> Hi Carter,
>
> Thank you for your reply. I'm using version argus version 3.0.2 on Mac OS X Snow Leopard (64 bit).
> I'll email you the file privately.
>
> Thanks,
> Sunjeet
>
>
> On 10-10-16 9:27 AM, Carter Bullard wrote:
>> Hey Sunjeet,
>> Which version are you running? What type of machine are you using, 32-bit or 64-bit?
>> If you can send a link to the file, or email it, I'll debug.
>>
>> Carter
>>
>> On Oct 16, 2010, at 11:40 AM, Sunjeet Singh wrote:
>>
>>> Hi,
>>>
>>> I have argus installed and configured and I have used it many a time to aggregate .pcap packet-level files to connection-level, using this command-
>>>
>>> argus -r packettrace.pcap -w connectiondata.argus
>>>
>>> But when I try this on the publicly-available CAIDA's Denial of Service attack pcap file, it fails with a segmentation fault. The only thing that is different about this trace is that this trace shows a Distributed DOS attack on a particular host and contains TCP packets only related to that host. The size of the trace file is 4.6 MB only, compared to other huge files that I've successfully argus'ed.
>>>
>>> What could be the cause of failure and how can I start debugging this. There is no more information provided in the error message.
>>>
>>> I will greatly appreciate any help that I can get on this.
>>>
>>> Thank you,
>>> Sunjeet Singh
>>>
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3681 bytes
Desc: not available
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20101016/b3ac3d89/attachment.bin>
More information about the argus
mailing list