[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-onion
Subject:    Re: [security-onion] Sguil unable to connect on port 7734
From:       Robert Campbell <insecuritymatters () gmail ! com>
Date:       2015-08-27 19:59:40
Message-ID: b1f9b272-c120-472d-9244-d25fad4e67d0 () googlegroups ! com
[Download RAW message or body]


Thank you much Doug.  

It was a mysql issue after all.  

"sudo sguil-db-purge" did not resolve the issue.  

After fumbling with this for a while, I used the following:

mysql> UPDATE event SET status=1, last_modified='2015-08-24 00:00:01', \
last_uid='sguil' WHERE event.status=0 and event.signature LIKE '%';

I restarted the server and all is working well now with sguil.

It appears that a nightly back-up caused the corruption.

Thank you!

-- 
You received this message because you are subscribed to the Google Groups \
"security-onion" group. To unsubscribe from this group and stop receiving emails from \
it, send an email to security-onion+unsubscribe@googlegroups.com. To post to this \
group, send email to security-onion@googlegroups.com. Visit this group at \
http://groups.google.com/group/security-onion. For more options, visit \
https://groups.google.com/d/optout.



[prev in list] [next in list] [prev in thread] [next in thread]