Bug#910739: fwsnort: All rules fail to import
Package: fwsnort
Version: 1.6.5-4
Severity: normal
I can't get any rules to import. Here's what happens with update-rules
followed by an attempt to import.
root@njh:/etc/fwsnort# /usr/sbin/fwsnort --update-rules
[+] Downloading latest rules into /etc/fwsnort/snort_rules/--2018-10-10 10:25:27-- http://rules.emergingthreats.net/open/snort-2.9.0/emerging-all.rules
Resolving rules.emergingthreats.net (rules.emergingthreats.net)... 96.43.137.99, 204.12.217.19
Connecting to rules.emergingthreats.net (rules.emergingthreats.net)|96.43.137.99|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 13880047 (13M)
Saving to: ‘emerging-all.rules’
emerging-all.rules 100%[===================>] 13.24M 3.43MB/s in 12s
2018-10-10 10:25:40 (1.06 MB/s) - ‘emerging-all.rules’ saved [13880047/13880047]
[+] Finished.
root@njh:/etc/fwsnort# /usr/sbin/fwsnort
[+] Testing /sbin/iptables for supported capabilities...
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Snort Rules File Success Fail Total
[+] emerging-all.rules 0 17510 17510
=============================
0 17510 17510
[+] No rules parsed.
[+] Logfile: /var/log/fwsnort/fwsnort.log
[-] No Snort rules could be translated, exiting
root@njh:/etc/fwsnort#
-- System Information:
Debian Release: 9.5
APT prefers stable
APT policy: (500, 'stable')
Architecture: arm64 (aarch64)
Kernel: Linux 4.15.11-mainline-rev1 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages fwsnort depends on:
ii debconf [debconf-2.0] 1.5.61
ii iptables 1.6.0+snapshot20161117-6
ii libiptables-parse-perl 1.6-1
ii libnet-rawip-perl 0.25-2+b2
ii libnetaddr-ip-perl 4.079+dfsg-1+b1
ii perl 5.24.1-3+deb9u4
Versions of packages fwsnort recommends:
ii snort-rules-default 2.9.7.0-5
fwsnort suggests no packages.
-- debconf information:
fwsnort/download: false
Reply to: