suricata-update: Command not found.

Support for security such as Firewalls and securing linux
Post Reply
hack3rcon
Posts: 757
Joined: 2014/11/24 11:04:37

suricata-update: Command not found.

Post by hack3rcon » 2019/02/05 09:13:20

Hello,
I want to install "Suricata-IDS" on CentOS 7 x86_64. I downloaded the package and copied it to "/usr/local/src/" and according to https://redmine.openinfosecfoundation.o ... stallation I wanted to install it but:

Code: Select all

# ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --enable-nfqueue --enable-lua
#  make && make install-full
.
.
.
running install_scripts
copying /usr/local/src/suricata-4.1.2/python/scripts-2.7/suricatactl -> /usr/bin
copying /usr/local/src/suricata-4.1.2/python/scripts-2.7/suricatasc -> /usr/bin
changing mode of /usr/bin/suricatactl to 755
changing mode of /usr/bin/suricatasc to 755
running install_egg_info
Writing /usr/lib/python2.7/site-packages/suricata-4.1.2-py2.7.egg-info
make[3]: Nothing to be done for `install-data-am'.
make[3]: Leaving directory `/usr/local/src/suricata-4.1.2/python'
make[2]: Leaving directory `/usr/local/src/suricata-4.1.2/python'
Making install in ebpf
make[2]: Entering directory `/usr/local/src/suricata-4.1.2/ebpf'
make[3]: Entering directory `/usr/local/src/suricata-4.1.2/ebpf'
make[3]: Nothing to be done for `install-exec-am'.
make[3]: Nothing to be done for `install-data-am'.
make[3]: Leaving directory `/usr/local/src/suricata-4.1.2/ebpf'
make[2]: Leaving directory `/usr/local/src/suricata-4.1.2/ebpf'
make[2]: Entering directory `/usr/local/src/suricata-4.1.2'
make[3]: Entering directory `/usr/local/src/suricata-4.1.2'
make[3]: Nothing to be done for `install-exec-am'.
Run 'make install-conf' if you want to install initial configuration files. Or 'make install-full' to install configuration and rules
make[3]: Leaving directory `/usr/local/src/suricata-4.1.2'
make[2]: Leaving directory `/usr/local/src/suricata-4.1.2'
make[1]: Leaving directory `/usr/local/src/suricata-4.1.2'
make install-conf
make[1]: Entering directory `/usr/local/src/suricata-4.1.2'
install -d "/etc/suricata/"
install -d "/var/log/suricata/files"
install -d "/var/log/suricata/certs"
install -d "/var/run/"
install -m 770 -d "/var/run/suricata"
make[1]: Leaving directory `/usr/local/src/suricata-4.1.2'
make install-rules
make[1]: Entering directory `/usr/local/src/suricata-4.1.2'
/usr/bin/suricata-update \
	--suricata /usr/bin/suricata \
	--suricata-conf /etc/suricata/suricata.yaml \
	--no-test --no-reload
make[1]: /usr/bin/suricata-update: Command not found
make[1]: *** [install-rules] Error 127
make[1]: Leaving directory `/usr/local/src/suricata-4.1.2'
make: *** [install-full] Error 2
What is my problem?

Thank you.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: suricata-update: Command not found.

Post by TrevorH » 2019/02/05 09:23:25

Suricata is in EPEL.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

hack3rcon
Posts: 757
Joined: 2014/11/24 11:04:37

Re: suricata-update: Command not found.

Post by hack3rcon » 2019/02/05 09:30:19

TrevorH wrote:
2019/02/05 09:23:25
Suricata is in EPEL.
I knew :

Code: Select all

Name        : suricata
Arch        : x86_64
Version     : 4.0.6
Release     : 1.el7
Size        : 1.1 M
Repo        : epel/x86_64
Summary     : Intrusion Detection System
URL         : http://suricata-ids.org/
License     : GPLv2
Description : The Suricata Engine is an Open Source Next Generation Intrusion
            : Detection and Prevention Engine. This engine is not intended to
            : just replace or emulate the existing tools in the industry, but
            : will bring new ideas and technologies to the field. This new Engine
            : supports Multi-threading, Automatic Protocol Detection (IP, TCP,
            : UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP
            : Matching, and GeoIP identification.
It is old version.

hack3rcon
Posts: 757
Joined: 2014/11/24 11:04:37

Re: suricata-update: Command not found.

Post by hack3rcon » 2019/02/05 13:14:14

I did:

Code: Select all

# git clone https://github.com/OISF/libhtp.git
# cd libhtp
# ./autogen.sh 
# make && make install
# git clone https://github.com/OISF/suricata-update.git
# cd suricata-update
# python setup.py build
# python setup.py install
# yum install PyYAML.x86_64
Then, compile and install "Suricata-IDS" again:

Code: Select all

# ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --enable-nfqueue --enable-lua
# make && make install && make install-rules
Problem solved.

Post Reply