-
Notifications
You must be signed in to change notification settings - Fork 1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ossec-hids-authd not starting #1368
Comments
And it's not running after that? Nothing listening on port 1515? |
ossec 2.9.3. |
I'll have to try and figure out how systemctl is trying to run authd. It's not really built to be a long-running daemon or anything. |
But if I want to register agents automatically without user involvement then I suppose authd is the solution. |
So if I understand correctly ossec-authd is getting started correctly but it is not generating any pid file due to which systemd is failing as it cannot find any pid file. |
From more debugging I understand that ossec-authd is creating pid file in |
@ddpbsd This line present in the init script for This makes systemd to think that pid file is present here, please remove this in your next release. After removing this line I was able to run ossec-hids-auth perfectly from init script. |
I had add: to get it to work. |
none of these solutions works for me. How hard is it to write a SystemD service file anyhow? |
Solved. Change: # pidfile: /var/ossec/var/run/ossec-authd.pid Add: PIDFILE=/var/ossec/var/run/ossec-authd.pid |
I am trying to start ossec-hids-authd using systemctl but it is not starting. It just hangs when I try to run
sudo /etc/init.d/ossec-hids-authd start
Starting ossec-hids-authd (via systemctl):
When I try to show status after killing the above command it shows this
sudo /etc/init.d/ossec-hids-authd status
● ossec-hids-authd.service - LSB: Authentication Daemon for OSSEC-HIDS.
Loaded: loaded (/etc/rc.d/init.d/ossec-hids-authd; bad; vendor preset: disabled)
Active: activating (start) since Wed 2018-02-21 14:57:38 UTC; 4min 53s ago
Docs: man:systemd-sysv-generator(8)
CGroup: /system.slice/ossec-hids-authd.service
└─7966 /var/ossec/bin/ossec-authd -p 1515
Feb 21 14:57:38 ip-10-0-196-113.ec2.internal systemd[1]: Starting LSB: Authentication Daemon for OSSEC-HIDS....
Feb 21 14:57:38 ip-10-0-196-113.ec2.internal ossec-hids-authd[7960]: [39B blob data]
Feb 21 14:57:38 ip-10-0-196-113.ec2.internal systemd[1]: PID file /var/run/ossec-authd.pid not readable (yet?) after start.
Feb 21 14:57:38 ip-10-0-196-113.ec2.internal ossec-hids-authd[7960]: 2018/02/21 14:57:38 ossec-authd: INFO: Started (pid: 7966).
The text was updated successfully, but these errors were encountered: