Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort Whitelist Problem (2.9.2.3 pkg v. 2.5.1)

    Scheduled Pinned Locked Moved pfSense Packages
    15 Posts 6 Posters 88.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      java007md
      last edited by

      Seeing a similar error when trying to update/save a whitelist:
      –-
      The following input errors were detected:

      A valid alias need to be provided

      Snort 2.9.2.3 pkg v. 2.5.1

      I am also seeing a whitelisted IP on the blocked IP list.

      1 Reply Last reply Reply Quote 0
      • G
        Gloom
        last edited by

        I've also upgraded to the latest package and recreated my white lists but  IPs from the white listed networks are still being blocked.
        I'm not seeing any issues loading the lists

        I'm using an alias list of type networks in the snort white list

        2.0.1-RELEASE (amd64)
        built on Mon Dec 12 18:43:51 EST 2011
        FreeBSD 8.1-RELEASE-p6

        Snort 2.9.2.3 pkg v. 2.5.1

        Never underestimate the power of human stupidity

        1 Reply Last reply Reply Quote 0
        • V
          vbentley
          last edited by

          My box is running the 32 bit distro.

          FreeBSD 8.1-RELEASE-p6 #1: Mon Dec 12 18:18:02 EST 2011 root@FreeBSD_8.0_pfSense_2.0-snaps.pfsense.org:/usr/obj./usr/pfSensesrc/src/sys/pfSense.8 i386
          Build Date Sep 20 2011 10:53:14

          I'm not an expert on this but for multibyte character encoding to work in PHP I think it needs to be configured with '–enable-mbstring'. When I ran phpinfo() to check the configuration options I couldn't find mbstring or any evidence of libmbfi being loaded. Is it loaded by another file from the config-file-scan-dir? Is this a configuration bug for the 32-bit build?

          Configure Command './configure' '–with-layout=GNU' '--with-config-file-scan-dir=/usr/local/etc/php' '--disable-all' '--enable-libxml' '--with-libxml-dir=/usr/local' '--enable-reflection' '--with-pcre-regex' '--program-prefix=' '--enable-fastcgi' '--with-regex=php' '--with-zend-vm=CALL' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=i386-portbld-freebsd8.1'

          Trademark Attribution and Credit
          pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

          1 Reply Last reply Reply Quote 0
          • V
            vbentley
            last edited by

            I don't have a spare 64-bit machine that I can test this on. If you are running 64-bit pfSense, can you create a PHP file containing the following code that will confirm a configuration difference between architectures if there is one.

            Create /usr/local/www/phpinfo.php containing the following code:

            phpinfo()
            ?>

            Visit the page in your browser to view the PHP configuration.

            Trademark Attribution and Credit
            pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

            1 Reply Last reply Reply Quote 0
            • M
              mschiek01
              last edited by

              @vbentley:

              I don't have a spare 64-bit machine that I can test this on. If you are running 64-bit pfSense, can you create a PHP file containing the following code that will confirm a configuration difference between architectures if there is one.

              Create /usr/local/www/phpinfo.php containing the following code:

              phpinfo()
              ?>

              Visit the page in your browser to view the PHP configuration.

              Works fine everything displays

              1 Reply Last reply Reply Quote 0
              • V
                vbentley
                last edited by

                Great!

                Please post here what it reports for System, Build Date and Configure Command. Thanks.
                Edit out your hostname if you wish. I only want to check the configuration commands are the same.

                Trademark Attribution and Credit
                pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

                1 Reply Last reply Reply Quote 0
                • M
                  mschiek01
                  last edited by

                  @vbentley:

                  Great!

                  Please post here what it reports for System, Build Date and Configure Command. Thanks.
                  Edit out your hostname if you wish. I only want to check the configuration commands are the same.

                  PHP Version 5.2.17

                  System FreeBSD XXXXXXXXXXXXXXXXXXXX 8.1-RELEASE-p6 FreeBSD 8.1-RELEASE-p6 #0: Mon Dec 12 18:15:35 EST 2011 root@FreeBSD_8.0_pfSense_2.0-AMD64.snaps.pfsense.org:/usr/obj./usr/pfSensesrc/src/sys/pfSense_SMP.8 amd64
                  Build Date Sep 20 2011 10:53:32
                  Configure Command './configure' '–with-layout=GNU' '--with-config-file-scan-dir=/usr/local/etc/php' '--disable-all' '--enable-libxml' '--with-libxml-dir=/usr/local' '--enable-reflection' '--with-pcre-regex' '--program-prefix=' '--enable-fastcgi' '--with-regex=php' '--with-zend-vm=CALL' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=amd64-portbld-freebsd8.1'
                  Server API CGI/FastCGI
                  Virtual Directory Support disabled
                  Configuration File (php.ini) Path /usr/local/etc
                  Loaded Configuration File /usr/local/etc/php.ini
                  Scan this dir for additional .ini files /usr/local/etc/php
                  additional .ini files parsed (none)
                  PHP API 20041225
                  PHP Extension 20060613
                  Zend Extension 220060519
                  Debug Build no
                  Thread Safety disabled
                  Zend Memory Manager enabled
                  IPv6 Support enabled
                  Registered PHP Streams https, ftps, php, file, data, http, ftp, compress.zlib, ssh2.shell, ssh2.exec, ssh2.tunnel, ssh2.scp, ssh2.sftp
                  Registered Stream Socket Transports tcp, udp, unix, udg, ssl, sslv3, sslv2, tls
                  Registered Stream Filters string.rot13, string.toupper, string.tolower, string.strip_tags, convert., consumed, zlib.

                  This server is protected with the Suhosin Patch 0.9.7
                  Copyright (c) 2006 Hardened-PHP Project

                  This program makes use of the Zend Scripting Language Engine:
                  Zend Engine v2.2.0, Copyright (c) 1998-2010 Zend Technologies
                      with Suhosin v0.9.27, Copyright (c) 2007, by SektionEins GmbH

                  Configuration
                  PHP Core
                  Directive Local Value Master Value
                  allow_call_time_pass_reference On On
                  allow_url_fopen On On
                  allow_url_include Off Off
                  always_populate_raw_post_data Off Off
                  arg_separator.input & &
                  arg_separator.output & &
                  asp_tags Off Off
                  auto_append_file no value no value
                  auto_globals_jit On On
                  auto_prepend_file no value no value
                  browscap no value no value
                  default_charset no value no value
                  default_mimetype text/html text/html
                  define_syslog_variables Off Off
                  disable_classes no value no value
                  disable_functions no value no value
                  display_errors On On
                  display_startup_errors Off Off
                  doc_root no value no value
                  docref_ext no value no value
                  docref_root no value no value
                  enable_dl On On
                  error_append_string no value no value
                  error_log /tmp/PHP_errors.log /tmp/PHP_errors.log
                  error_prepend_string no value no value
                  error_reporting no value no value
                  expose_php Off Off
                  extension_dir /usr/local/lib/php/20060613/ /usr/local/lib/php/20060613/
                  file_uploads On On
                  highlight.bg #FFFFFF #FFFFFF
                  highlight.comment #FF8000 #FF8000
                  highlight.default #0000BB #0000BB
                  highlight.html #000000 #000000
                  highlight.keyword #007700 #007700
                  highlight.string #DD0000 #DD0000
                  html_errors Off Off
                  ignore_repeated_errors Off Off
                  ignore_repeated_source Off Off
                  ignore_user_abort Off Off
                  implicit_flush On On
                  include_path .:/etc/inc:/usr/local/www:/usr/local/captiveportal:/usr/local/pkg .:/etc/inc:/usr/local/www:/usr/local/captiveportal:/usr/local/pkg
                  log_errors On On
                  log_errors_max_len 1024 1024
                  magic_quotes_gpc Off Off
                  magic_quotes_runtime Off Off
                  magic_quotes_sybase Off Off
                  mail.force_extra_parameters no value no value
                  max_execution_time 99999999 99999999
                  max_file_uploads 20 20
                  max_input_nesting_level 64 64
                  max_input_time 99999999 99999999
                  memory_limit 128M 128M
                  open_basedir no value no value
                  output_buffering 0 0
                  output_handler no value no value
                  post_max_size 100M 100M
                  precision 14 14
                  realpath_cache_size 16K 16K
                  realpath_cache_ttl 120 120
                  register_argc_argv On On
                  register_globals Off Off
                  register_long_arrays On On
                  report_memleaks On On
                  report_zend_debug On On
                  safe_mode Off Off
                  safe_mode_exec_dir /usr/local/php/bin /usr/local/php/bin
                  safe_mode_gid Off Off
                  safe_mode_include_dir no value no value
                  sendmail_from no value no value
                  sendmail_path /usr/sbin/sendmail -t -i /usr/sbin/sendmail -t -i
                  serialize_precision 100 100
                  short_open_tag On On
                  SMTP localhost localhost
                  smtp_port 25 25
                  sql.safe_mode Off Off
                  suhosin.log.phpscript.is_safe Off Off
                  track_errors Off Off
                  unserialize_callback_func no value no value
                  upload_max_filesize 100M 100M
                  upload_tmp_dir /tmp /tmp
                  user_dir no value no value
                  variables_order EGPCS EGPCS
                  xmlrpc_error_number 0 0
                  xmlrpc_errors Off Off
                  y2k_compliance On On
                  zend.ze1_compatibility_mode Off Off

                  apc
                  APC Support enabled
                  Version 3.1.6
                  APC Debugging Disabled
                  MMAP Support Enabled
                  MMAP File Mask no value
                  Locking type File Locks
                  Revision $Revision: 303642 $
                  Build Date Aug 11 2011 13:58:09

                  Directive Local Value Master Value
                  apc.cache_by_default On On
                  apc.canonicalize On On
                  apc.coredump_unmap Off Off
                  apc.enable_cli Off Off
                  apc.enabled On On
                  apc.file_md5 Off Off
                  apc.file_update_protection 2 2
                  apc.filters no value no value
                  apc.gc_ttl 3600 3600
                  apc.include_once_override Off Off
                  apc.lazy_classes Off Off
                  apc.lazy_functions Off Off
                  apc.max_file_size 1M 1M
                  apc.mmap_file_mask no value no value
                  apc.num_files_hint 1000 1000
                  apc.preload_path no value no value
                  apc.report_autofilter Off Off
                  apc.rfc1867 Off Off
                  apc.rfc1867_freq 0 0
                  apc.rfc1867_name APC_UPLOAD_PROGRESS APC_UPLOAD_PROGRESS
                  apc.rfc1867_prefix upload_ upload_
                  apc.rfc1867_ttl 3600 3600
                  apc.shm_segments 1 1
                  apc.shm_size 35M 35M
                  apc.slam_defense On On
                  apc.stat On On
                  apc.stat_ctime Off Off
                  apc.ttl 0 0
                  apc.use_request_time On On
                  apc.user_entries_hint 4096 4096
                  apc.user_ttl 0 0
                  apc.write_lock On On

                  cgi-fcgi
                  Directive Local Value Master Value
                  cgi.check_shebang_line 1 1
                  cgi.fix_pathinfo 1 1
                  cgi.nph 0 0
                  cgi.rfc2616_headers 0 0
                  fastcgi.logging 1 1

                  ctype
                  ctype functions enabled

                  curl
                  cURL support enabled
                  cURL Information libcurl/7.21.3 OpenSSL/0.9.8n zlib/1.2.3

                  date
                  date/time support enabled
                  "Olson" Timezone Database Version 2010.9
                  Timezone Database internal
                  Default timezone America/Chicago

                  Directive Local Value Master Value
                  date.default_latitude 31.7667 31.7667
                  date.default_longitude 35.2333 35.2333
                  date.sunrise_zenith 90.583333 90.583333
                  date.sunset_zenith 90.583333 90.583333
                  date.timezone no value no value

                  gettext
                  GetText Support enabled

                  ldap
                  LDAP Support enabled
                  RCS Version $Id: ldap.c 293036 2010-01-03 09:23:27Z sebastian $
                  Total Links 0/unlimited
                  API Version 3001
                  Vendor Name OpenLDAP
                  Vendor Version 20426

                  libxml
                  libXML support active
                  libXML Version 2.7.8
                  libXML streams enabled

                  mbstring
                  Multibyte Support enabled
                  Multibyte string engine libmbfl
                  Multibyte (japanese) regex support enabled
                  Multibyte regex (oniguruma) version 4.4.4
                  Multibyte regex (oniguruma) backtrack check On

                  mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1.

                  Directive Local Value Master Value
                  mbstring.detect_order no value no value
                  mbstring.encoding_translation Off Off
                  mbstring.func_overload 0 0
                  mbstring.http_input pass pass
                  mbstring.http_output pass pass
                  mbstring.internal_encoding no value no value
                  mbstring.language neutral neutral
                  mbstring.strict_detection Off Off
                  mbstring.substitute_character no value no value

                  mhash
                  MHASH support Enabled
                  MHASH API Version 20060101

                  openssl
                  OpenSSL support enabled
                  OpenSSL Version OpenSSL 0.9.8n 24 Mar 2010

                  pcntl
                  pcntl support enabled

                  pcre
                  PCRE (Perl Compatible Regular Expressions) Support enabled
                  PCRE Library Version 8.02 2010-03-19

                  Directive Local Value Master Value
                  pcre.backtrack_limit 100000 100000
                  pcre.recursion_limit 100000 100000

                  PDO
                  PDO support enabled
                  PDO drivers no value

                  posix
                  Revision $Revision: 293036 $

                  Reflection
                  Reflection enabled
                  Version $Id: php_reflection.c 300129 2010-06-03 00:43:37Z felipe $

                  session
                  Session Support enabled
                  Registered save handlers files user
                  Registered serializer handlers php php_binary

                  Directive Local Value Master Value
                  session.auto_start Off Off
                  session.bug_compat_42 On On
                  session.bug_compat_warn On On
                  session.cache_expire 180 180
                  session.cache_limiter nocache nocache
                  session.cookie_domain no value no value
                  session.cookie_httponly Off Off
                  session.cookie_lifetime 0 0
                  session.cookie_path / /
                  session.cookie_secure Off Off
                  session.entropy_file no value no value
                  session.entropy_length 0 0
                  session.gc_divisor 100 100
                  session.gc_maxlifetime 1440 1440
                  session.gc_probability 1 1
                  session.hash_bits_per_character 4 4
                  session.hash_function 0 0
                  session.name PHPSESSID PHPSESSID
                  session.referer_check no value no value
                  session.save_handler files files
                  session.save_path no value no value
                  session.serialize_handler php php
                  session.use_cookies On On
                  session.use_only_cookies Off Off
                  session.use_trans_sid 0 0

                  shmop
                  shmop support enabled

                  SimpleXML
                  Simplexml support enabled
                  Revision $Revision: 299016 $
                  Schema support enabled

                  SPL
                  SPL support enabled
                  Interfaces Countable, OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject
                  Classes AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, DirectoryIterator, DomainException, EmptyIterator, FilterIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RegexIterator, RuntimeException, SimpleXMLIterator, SplFileInfo, SplFileObject, SplObjectStorage, SplTempFileObject, UnderflowException, UnexpectedValueException

                  SQLite
                  SQLite support enabled
                  PECL Module version 2.0-dev $Id: sqlite.c 298697 2010-04-28 12:10:10Z iliaa $
                  SQLite Library 2.8.17
                  SQLite Encoding iso8859

                  Directive Local Value Master Value
                  sqlite.assoc_case 0 0

                  ssh2
                  libssh2 version 1.2.8
                  banner SSH-2.0-libssh2_1.2.8
                  remote forwarding enabled
                  hostbased auth enabled
                  polling support enabled
                  publickey subsystem enabled

                  standard
                  Regex Library Bundled library enabled
                  Dynamic Library Support enabled
                  Path to sendmail /usr/sbin/sendmail -t -i

                  Directive Local Value Master Value
                  assert.active 1 1
                  assert.bail 0 0
                  assert.callback no value no value
                  assert.quiet_eval 0 0
                  assert.warning 1 1
                  auto_detect_line_endings 0 0
                  default_socket_timeout 60 60
                  safe_mode_allowed_env_vars PHP_ PHP_
                  safe_mode_protected_env_vars LD_LIBRARY_PATH LD_LIBRARY_PATH
                  url_rewriter.tags a=href,area=href,frame=src,form=,fieldset= a=href,area=href,frame=src,form=,fieldset=
                  user_agent no value no value

                  suhosin
                  Suhosin logo This server is protected with the Suhosin Extension 0.9.27

                  Copyright (c) 2006-2007 Hardened-PHP Project
                  Copyright (c) 2007-2008 SektionEins GmbH

                  Directive Local Value Master Value
                  suhosin.apc_bug_workaround Off Off
                  suhosin.cookie.checkraddr 0 0
                  suhosin.cookie.cryptdocroot On On
                  suhosin.cookie.cryptkey [ protected ] [ protected ]
                  suhosin.cookie.cryptlist no value no value
                  suhosin.cookie.cryptraddr 0 0
                  suhosin.cookie.cryptua On On
                  suhosin.cookie.disallow_nul 1 1
                  suhosin.cookie.disallow_ws 1 1
                  suhosin.cookie.encrypt Off Off
                  suhosin.cookie.max_array_depth 50 50
                  suhosin.cookie.max_array_index_length 64 64
                  suhosin.cookie.max_name_length 64 64
                  suhosin.cookie.max_totalname_length 256 256
                  suhosin.cookie.max_value_length 10000 10000
                  suhosin.cookie.max_vars 100 100
                  suhosin.cookie.plainlist no value no value
                  suhosin.coredump Off Off
                  suhosin.disable.display_errors Off Off
                  suhosin.executor.allow_symlink Off Off
                  suhosin.executor.disable_emodifier Off Off
                  suhosin.executor.disable_eval Off Off
                  suhosin.executor.eval.blacklist no value no value
                  suhosin.executor.eval.whitelist no value no value
                  suhosin.executor.func.blacklist no value no value
                  suhosin.executor.func.whitelist no value no value
                  suhosin.executor.include.blacklist no value no value
                  suhosin.executor.include.max_traversal 0 0
                  suhosin.executor.include.whitelist no value no value
                  suhosin.executor.max_depth 0 0
                  suhosin.filter.action no value no value
                  suhosin.get.disallow_nul 1 1
                  suhosin.get.disallow_ws 0 0
                  suhosin.get.max_array_depth 5000 5000
                  suhosin.get.max_array_index_length 256 256
                  suhosin.get.max_name_length 64 64
                  suhosin.get.max_totalname_length 256 256
                  suhosin.get.max_value_length 500000 500000
                  suhosin.get.max_vars 5000 5000
                  suhosin.mail.protect 0 0
                  suhosin.memory_limit 512435456 512435456
                  suhosin.mt_srand.ignore On On
                  suhosin.multiheader Off Off
                  suhosin.perdir 0 0
                  suhosin.post.disallow_nul 1 1
                  suhosin.post.disallow_ws 0 0
                  suhosin.post.max_array_depth 5000 5000
                  suhosin.post.max_array_index_length 256 256
                  suhosin.post.max_name_length 64 64
                  suhosin.post.max_totalname_length 256 256
                  suhosin.post.max_value_length 500000 500000
                  suhosin.post.max_vars 5000 5000
                  suhosin.protectkey On On
                  suhosin.request.disallow_nul 1 1
                  suhosin.request.disallow_ws 0 0
                  suhosin.request.max_array_depth 5000 5000
                  suhosin.request.max_array_index_length 256 256
                  suhosin.request.max_totalname_length 256 256
                  suhosin.request.max_value_length 500000 500000
                  suhosin.request.max_varname_length 64 64
                  suhosin.request.max_vars 5000 5000
                  suhosin.server.encode On On
                  suhosin.server.strip On On
                  suhosin.session.checkraddr 0 0
                  suhosin.session.cryptdocroot On On
                  suhosin.session.cryptkey [ protected ] [ protected ]
                  suhosin.session.cryptraddr 0 0
                  suhosin.session.cryptua On On
                  suhosin.session.encrypt On On
                  suhosin.session.max_id_length 128 128
                  suhosin.simulation Off Off
                  suhosin.sql.bailout_on_error Off Off
                  suhosin.sql.comment 0 0
                  suhosin.sql.multiselect 0 0
                  suhosin.sql.opencomment 0 0
                  suhosin.sql.union 0 0
                  suhosin.sql.user_postfix no value no value
                  suhosin.sql.user_prefix no value no value
                  suhosin.srand.ignore On On
                  suhosin.stealth On On
                  suhosin.upload.disallow_binary 0 0
                  suhosin.upload.disallow_elf 1 1
                  suhosin.upload.max_uploads 25 25
                  suhosin.upload.remove_binary 0 0
                  suhosin.upload.verification_script no value no value

                  xml
                  XML Support active
                  XML Namespace Support active
                  libxml2 Version 2.7.8

                  xmlreader
                  XMLReader enabled

                  xmlwriter
                  XMLWriter enabled

                  zlib
                  ZLib Support enabled
                  Stream Wrapper support compress.zlib://
                  Stream Filter support zlib.inflate, zlib.deflate
                  Compiled Version 1.2.3
                  Linked Version 1.2.3

                  Directive Local Value Master Value
                  zlib.output_compression Off Off
                  zlib.output_compression_level 1 1
                  zlib.output_handler no value no value

                  zmq
                  ZMQ extension enabled
                  ZMQ extension version @PACKAGE_VERSION@
                  libzmq version 2.1.7

                  Directive Local Value Master Value

                  Additional Modules
                  Module Name
                  pfSense
                  readline

                  Environment
                  Variable Value
                  HOME /
                  OLDPWD /
                  PATH /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                  PWD /usr/local/www
                  PHP_FCGI_CHILDREN 2
                  PHP_FCGI_MAX_REQUESTS 500

                  PHP Variables
                  Variable Value
                  _REQUEST["PHPSESSID"] 51d05d436402dbda27dd022a7032efbb
                  _COOKIE["PHPSESSID"] 51d05d436402dbda27dd022a7032efbb
                  _SERVER["HOME"] /
                  _SERVER["OLDPWD"] /
                  _SERVER["PATH"] /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                  _SERVER["PWD"] /usr/local/www
                  _SERVER["PHP_FCGI_CHILDREN"] 2
                  _SERVER["PHP_FCGI_MAX_REQUESTS"] 500
                  _SERVER["FCGI_ROLE"] RESPONDER
                  _SERVER["SERVER_SOFTWARE"] lighttpd/1.4.29
                  _SERVER["SERVER_NAME"] 10.0.0.3
                  _SERVER["GATEWAY_INTERFACE"] CGI/1.1
                  _SERVER["SERVER_PORT"] 80
                  _SERVER["SERVER_ADDR"] 10.0.0.3
                  _SERVER["REMOTE_PORT"] 29520
                  _SERVER["REMOTE_ADDR"] 10.0.0.2
                  _SERVER["SCRIPT_NAME"] /phpinfo.php
                  _SERVER["PATH_INFO"] no value
                  _SERVER["SCRIPT_FILENAME"] /usr/local/www/phpinfo.php
                  _SERVER["DOCUMENT_ROOT"] /usr/local/www/
                  _SERVER["REQUEST_URI"] /phpinfo.php
                  _SERVER["QUERY_STRING"] no value
                  _SERVER["REQUEST_METHOD"] GET
                  _SERVER["REDIRECT_STATUS"] 200
                  _SERVER["SERVER_PROTOCOL"] HTTP/1.0
                  _SERVER["HTTP_HOST"] 10.0.0.3
                  _SERVER["HTTP_USER_AGENT"] Mozilla/5.0 (Windows NT 6.1; rv:14.0) Gecko/20100101 Firefox/14.0.1
                  _SERVER["HTTP_ACCEPT"] text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
                  _SERVER["HTTP_ACCEPT_LANGUAGE"] en-us,en;q=0.5
                  _SERVER["HTTP_ACCEPT_ENCODING"] identity,gzip,deflate
                  _SERVER["HTTP_COOKIE"] PHPSESSID=51d05d436402dbda27dd022a7032efbb
                  _SERVER["HTTP_VIA"] 1.0 localhost:3128 (squid/2.7.STABLE9)
                  _SERVER["HTTP_X_FORWARDED_FOR"] 127.0.0.1
                  _SERVER["HTTP_CACHE_CONTROL"] max-age=259200
                  _SERVER["HTTP_CONNECTION"] keep-alive
                  _SERVER["PHP_SELF"] /phpinfo.php
                  _SERVER["REQUEST_TIME"] 1343138776
                  _SERVER["argv"]

                  Array
                  (
                  )

                  _SERVER["argc"] 0
                  _ENV["HOME"] /
                  _ENV["OLDPWD"] /
                  _ENV["PATH"] /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                  _ENV["PWD"] /usr/local/www
                  _ENV["PHP_FCGI_CHILDREN"] 2
                  _ENV["PHP_FCGI_MAX_REQUESTS"] 500
                  _ENV["FCGI_ROLE"] RESPONDER
                  _ENV["SERVER_SOFTWARE"] lighttpd/1.4.29
                  _ENV["SERVER_NAME"] 10.0.0.3
                  _ENV["GATEWAY_INTERFACE"] CGI/1.1
                  _ENV["SERVER_PORT"] 80
                  _ENV["SERVER_ADDR"] 10.0.0.3
                  _ENV["REMOTE_PORT"] 29520
                  _ENV["REMOTE_ADDR"] 10.0.0.2
                  _ENV["SCRIPT_NAME"] /phpinfo.php
                  _ENV["PATH_INFO"] no value
                  _ENV["SCRIPT_FILENAME"] /usr/local/www/phpinfo.php
                  _ENV["DOCUMENT_ROOT"] /usr/local/www/
                  _ENV["REQUEST_URI"] /phpinfo.php
                  _ENV["QUERY_STRING"] no value
                  _ENV["REQUEST_METHOD"] GET
                  _ENV["REDIRECT_STATUS"] 200
                  _ENV["SERVER_PROTOCOL"] HTTP/1.0
                  _ENV["HTTP_HOST"] 10.0.0.3
                  _ENV["HTTP_USER_AGENT"] Mozilla/5.0 (Windows NT 6.1; rv:14.0) Gecko/20100101 Firefox/14.0.1
                  _ENV["HTTP_ACCEPT"] text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
                  _ENV["HTTP_ACCEPT_LANGUAGE"] en-us,en;q=0.5
                  _ENV["HTTP_ACCEPT_ENCODING"] identity,gzip,deflate
                  _ENV["HTTP_COOKIE"] PHPSESSID=51d05d436402dbda27dd022a7032efbb
                  _ENV["HTTP_VIA"] 1.0 localhost:3128 (squid/2.7.STABLE9)
                  _ENV["HTTP_X_FORWARDED_FOR"] 127.0.0.1
                  _ENV["HTTP_CACHE_CONTROL"] max-age=259200
                  _ENV["HTTP_CONNECTION"] keep-alive

                  1 Reply Last reply Reply Quote 0
                  • V
                    vbentley
                    last edited by

                    Thanks for confirming that. Your amd64 PHP installation has mbstring loaded, my i386 build does not. Anyone else have the same outcome of mbstring present on amd64 build and not on i386?

                    Trademark Attribution and Credit
                    pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

                    1 Reply Last reply Reply Quote 0
                    • V
                      vbentley
                      last edited by

                      I have been investigating further and the configuration option –with-config-file-scan-dir=/usr/local/etc/php suggests that there may be more configuration files to process in /usr/local/etc/php . Perhaps this is where mbstring is loaded? This subdirectory is not present on my machine.

                      Trademark Attribution and Credit
                      pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

                      1 Reply Last reply Reply Quote 0
                      • J
                        java007md
                        last edited by

                        @vbentley:

                        I have been investigating further and the configuration option –with-config-file-scan-dir=/usr/local/etc/php suggests that there may be more configuration files to process in /usr/local/etc/php . Perhaps this is where mbstring is loaded? This subdirectory is not present on my machine.

                        No /usr/local/etc/php directory here either.

                        My whitelist error is different than what you are seeing (Services: Snort: Whitelist: Edit 63463; The following input errors were detected: A valid alias need to be provided), but for what it's worth, the phpinfo output I have (i386) is below:

                        –--------------------------------------------------------
                        PHP Version 5.2.17

                        System FreeBSD pfsense.localdomain 8.1-RELEASE-p6 FreeBSD 8.1-RELEASE-p6 #0: Mon Dec 12 17:53:00 EST 2011 root@FreeBSD_8.0_pfSense_2.0-snaps.pfsense.org:/usr/obj./usr/pfSensesrc/src/sys/pfSense_SMP.8 i386
                        Build Date Sep 20 2011 10:53:14
                        Configure Command './configure' '--with-layout=GNU' '--with-config-file-scan-dir=/usr/local/etc/php' '--disable-all' '--enable-libxml' '--with-libxml-dir=/usr/local' '--enable-reflection' '--with-pcre-regex' '--program-prefix=' '--enable-fastcgi' '--with-regex=php' '--with-zend-vm=CALL' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=i386-portbld-freebsd8.1'
                        Server API CGI/FastCGI
                        Virtual Directory Support disabled
                        Configuration File (php.ini) Path /usr/local/etc
                        Loaded Configuration File /usr/local/etc/php.ini
                        Scan this dir for additional .ini files /usr/local/etc/php
                        additional .ini files parsed (none)
                        PHP API 20041225
                        PHP Extension 20060613
                        Zend Extension 220060519
                        Debug Build no
                        Thread Safety disabled
                        Zend Memory Manager enabled
                        IPv6 Support enabled
                        Registered PHP Streams https, ftps, php, file, data, http, ftp, compress.zlib, ssh2.shell, ssh2.exec, ssh2.tunnel, ssh2.scp, ssh2.sftp
                        Registered Stream Socket Transports tcp, udp, unix, udg, ssl, sslv3, sslv2, tls
                        Registered Stream Filters string.rot13, string.toupper, string.tolower, string.strip_tags, convert., consumed, zlib.

                        This server is protected with the Suhosin Patch 0.9.7
                        Copyright (c) 2006 Hardened-PHP Project

                        This program makes use of the Zend Scripting Language Engine:
                        Zend Engine v2.2.0, Copyright (c) 1998-2010 Zend Technologies
                            with Suhosin v0.9.27, Copyright (c) 2007, by SektionEins GmbH

                        Configuration

                        PHP Core

                        Directive Local Value Master Value
                        allow_call_time_pass_reference On On
                        allow_url_fopen On On
                        allow_url_include Off Off
                        always_populate_raw_post_data Off Off
                        arg_separator.input & &
                        arg_separator.output & &
                        asp_tags Off Off
                        auto_append_file no value no value
                        auto_globals_jit On On
                        auto_prepend_file no value no value
                        browscap no value no value
                        default_charset no value no value
                        default_mimetype text/html text/html
                        define_syslog_variables Off Off
                        disable_classes no value no value
                        disable_functions no value no value
                        display_errors On On
                        display_startup_errors Off Off
                        doc_root no value no value
                        docref_ext no value no value
                        docref_root no value no value
                        enable_dl On On
                        error_append_string no value no value
                        error_log /tmp/PHP_errors.log /tmp/PHP_errors.log
                        error_prepend_string no value no value
                        error_reporting no value no value
                        expose_php Off Off
                        extension_dir /usr/local/lib/php/20060613/ /usr/local/lib/php/20060613/
                        file_uploads On On
                        highlight.bg #FFFFFF #FFFFFF
                        highlight.comment #FF8000 #FF8000
                        highlight.default #0000BB #0000BB
                        highlight.html #000000 #000000
                        highlight.keyword #007700 #007700
                        highlight.string #DD0000 #DD0000
                        html_errors Off Off
                        ignore_repeated_errors Off Off
                        ignore_repeated_source Off Off
                        ignore_user_abort Off Off
                        implicit_flush On On
                        include_path .:/etc/inc:/usr/local/www:/usr/local/captiveportal:/usr/local/pkg .:/etc/inc:/usr/local/www:/usr/local/captiveportal:/usr/local/pkg
                        log_errors On On
                        log_errors_max_len 1024 1024
                        magic_quotes_gpc Off Off
                        magic_quotes_runtime Off Off
                        magic_quotes_sybase Off Off
                        mail.force_extra_parameters no value no value
                        max_execution_time 99999999 99999999
                        max_file_uploads 20 20
                        max_input_nesting_level 64 64
                        max_input_time 99999999 99999999
                        memory_limit 128M 128M
                        open_basedir no value no value
                        output_buffering 0 0
                        output_handler no value no value
                        post_max_size 100M 100M
                        precision 14 14
                        realpath_cache_size 16K 16K
                        realpath_cache_ttl 120 120
                        register_argc_argv On On
                        register_globals Off Off
                        register_long_arrays On On
                        report_memleaks On On
                        report_zend_debug On On
                        safe_mode Off Off
                        safe_mode_exec_dir /usr/local/php/bin /usr/local/php/bin
                        safe_mode_gid Off Off
                        safe_mode_include_dir no value no value
                        sendmail_from no value no value
                        sendmail_path /usr/sbin/sendmail -t -i /usr/sbin/sendmail -t -i
                        serialize_precision 100 100
                        short_open_tag On On
                        SMTP localhost localhost
                        smtp_port 25 25
                        sql.safe_mode Off Off
                        suhosin.log.phpscript.is_safe Off Off
                        track_errors Off Off
                        unserialize_callback_func no value no value
                        upload_max_filesize 100M 100M
                        upload_tmp_dir /tmp /tmp
                        user_dir no value no value
                        variables_order EGPCS EGPCS
                        xmlrpc_error_number 0 0
                        xmlrpc_errors Off Off
                        y2k_compliance On On
                        zend.ze1_compatibility_mode Off Off

                        apc

                        APC Support enabled
                        Version 3.1.6
                        APC Debugging Disabled
                        MMAP Support Enabled
                        MMAP File Mask no value
                        Locking type File Locks
                        Revision $Revision: 303642 $
                        Build Date Aug 11 2011 14:06:10

                        Directive Local Value Master Value
                        apc.cache_by_default On On
                        apc.canonicalize On On
                        apc.coredump_unmap Off Off
                        apc.enable_cli Off Off
                        apc.enabled On On
                        apc.file_md5 Off Off
                        apc.file_update_protection 2 2
                        apc.filters no value no value
                        apc.gc_ttl 3600 3600
                        apc.include_once_override Off Off
                        apc.lazy_classes Off Off
                        apc.lazy_functions Off Off
                        apc.max_file_size 1M 1M
                        apc.mmap_file_mask no value no value
                        apc.num_files_hint 1000 1000
                        apc.preload_path no value no value
                        apc.report_autofilter Off Off
                        apc.rfc1867 Off Off
                        apc.rfc1867_freq 0 0
                        apc.rfc1867_name APC_UPLOAD_PROGRESS APC_UPLOAD_PROGRESS
                        apc.rfc1867_prefix upload_ upload_
                        apc.rfc1867_ttl 3600 3600
                        apc.shm_segments 1 1
                        apc.shm_size 35M 35M
                        apc.slam_defense On On
                        apc.stat On On
                        apc.stat_ctime Off Off
                        apc.ttl 0 0
                        apc.use_request_time On On
                        apc.user_entries_hint 4096 4096
                        apc.user_ttl 0 0
                        apc.write_lock On On

                        cgi-fcgi

                        Directive Local Value Master Value
                        cgi.check_shebang_line 1 1
                        cgi.fix_pathinfo 1 1
                        cgi.nph 0 0
                        cgi.rfc2616_headers 0 0
                        fastcgi.logging 1 1

                        ctype

                        ctype functions enabled

                        curl

                        cURL support enabled
                        cURL Information libcurl/7.21.3 OpenSSL/0.9.8n zlib/1.2.3

                        date

                        date/time support enabled
                        "Olson" Timezone Database Version 2010.9
                        Timezone Database internal
                        Default timezone America/New_York

                        Directive Local Value Master Value
                        date.default_latitude 31.7667 31.7667
                        date.default_longitude 35.2333 35.2333
                        date.sunrise_zenith 90.583333 90.583333
                        date.sunset_zenith 90.583333 90.583333
                        date.timezone no value no value

                        gettext

                        GetText Support enabled

                        ldap

                        LDAP Support enabled
                        RCS Version $Id: ldap.c 293036 2010-01-03 09:23:27Z sebastian $
                        Total Links 0/unlimited
                        API Version 3001
                        Vendor Name OpenLDAP
                        Vendor Version 20426

                        libxml

                        libXML support active
                        libXML Version 2.7.8
                        libXML streams enabled

                        mbstring

                        Multibyte Support enabled
                        Multibyte string engine libmbfl
                        Multibyte (japanese) regex support enabled
                        Multibyte regex (oniguruma) version 4.4.4
                        Multibyte regex (oniguruma) backtrack check On

                        mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1.

                        Directive Local Value Master Value
                        mbstring.detect_order no value no value
                        mbstring.encoding_translation Off Off
                        mbstring.func_overload 0 0
                        mbstring.http_input pass pass
                        mbstring.http_output pass pass
                        mbstring.internal_encoding no value no value
                        mbstring.language neutral neutral
                        mbstring.strict_detection Off Off
                        mbstring.substitute_character no value no value

                        mhash

                        MHASH support Enabled
                        MHASH API Version 20060101

                        openssl

                        OpenSSL support enabled
                        OpenSSL Version OpenSSL 0.9.8n 24 Mar 2010

                        pcntl

                        pcntl support enabled

                        pcre

                        PCRE (Perl Compatible Regular Expressions) Support enabled
                        PCRE Library Version 8.02 2010-03-19

                        Directive Local Value Master Value
                        pcre.backtrack_limit 100000 100000
                        pcre.recursion_limit 100000 100000

                        PDO

                        PDO support enabled
                        PDO drivers no value

                        posix

                        Revision $Revision: 293036 $

                        Reflection

                        Reflection enabled
                        Version $Id: php_reflection.c 300129 2010-06-03 00:43:37Z felipe $

                        session

                        Session Support enabled
                        Registered save handlers files user
                        Registered serializer handlers php php_binary

                        Directive Local Value Master Value
                        session.auto_start Off Off
                        session.bug_compat_42 On On
                        session.bug_compat_warn On On
                        session.cache_expire 180 180
                        session.cache_limiter nocache nocache
                        session.cookie_domain no value no value
                        session.cookie_httponly Off Off
                        session.cookie_lifetime 0 0
                        session.cookie_path / /
                        session.cookie_secure Off Off
                        session.entropy_file no value no value
                        session.entropy_length 0 0
                        session.gc_divisor 100 100
                        session.gc_maxlifetime 1440 1440
                        session.gc_probability 1 1
                        session.hash_bits_per_character 4 4
                        session.hash_function 0 0
                        session.name PHPSESSID PHPSESSID
                        session.referer_check no value no value
                        session.save_handler files files
                        session.save_path no value no value
                        session.serialize_handler php php
                        session.use_cookies On On
                        session.use_only_cookies Off Off
                        session.use_trans_sid 0 0

                        shmop

                        shmop support enabled

                        SimpleXML

                        Simplexml support enabled
                        Revision $Revision: 299016 $
                        Schema support enabled

                        SPL

                        SPL support enabled
                        Interfaces Countable, OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject
                        Classes AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, DirectoryIterator, DomainException, EmptyIterator, FilterIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RegexIterator, RuntimeException, SimpleXMLIterator, SplFileInfo, SplFileObject, SplObjectStorage, SplTempFileObject, UnderflowException, UnexpectedValueException

                        SQLite

                        SQLite support enabled
                        PECL Module version 2.0-dev $Id: sqlite.c 298697 2010-04-28 12:10:10Z iliaa $
                        SQLite Library 2.8.17
                        SQLite Encoding iso8859

                        Directive Local Value Master Value
                        sqlite.assoc_case 0 0

                        ssh2

                        libssh2 version 1.2.8
                        banner SSH-2.0-libssh2_1.2.8
                        remote forwarding enabled
                        hostbased auth enabled
                        polling support enabled
                        publickey subsystem enabled

                        standard

                        Regex Library Bundled library enabled
                        Dynamic Library Support enabled
                        Path to sendmail /usr/sbin/sendmail -t -i

                        Directive Local Value Master Value
                        assert.active 1 1
                        assert.bail 0 0
                        assert.callback no value no value
                        assert.quiet_eval 0 0
                        assert.warning 1 1
                        auto_detect_line_endings 0 0
                        default_socket_timeout 60 60
                        safe_mode_allowed_env_vars PHP_ PHP_
                        safe_mode_protected_env_vars LD_LIBRARY_PATH LD_LIBRARY_PATH
                        url_rewriter.tags a=href,area=href,frame=src,form=,fieldset= a=href,area=href,frame=src,form=,fieldset=
                        user_agent no value no value

                        suhosin

                        This server is protected with the Suhosin Extension 0.9.27

                        Copyright (c) 2006-2007 Hardened-PHP Project
                        Copyright (c) 2007-2008 SektionEins GmbH

                        Directive Local Value Master Value
                        suhosin.apc_bug_workaround Off Off
                        suhosin.cookie.checkraddr 0 0
                        suhosin.cookie.cryptdocroot On On
                        suhosin.cookie.cryptkey [ protected ] [ protected ]
                        suhosin.cookie.cryptlist no value no value
                        suhosin.cookie.cryptraddr 0 0
                        suhosin.cookie.cryptua On On
                        suhosin.cookie.disallow_nul 1 1
                        suhosin.cookie.disallow_ws 1 1
                        suhosin.cookie.encrypt Off Off
                        suhosin.cookie.max_array_depth 50 50
                        suhosin.cookie.max_array_index_length 64 64
                        suhosin.cookie.max_name_length 64 64
                        suhosin.cookie.max_totalname_length 256 256
                        suhosin.cookie.max_value_length 10000 10000
                        suhosin.cookie.max_vars 100 100
                        suhosin.cookie.plainlist no value no value
                        suhosin.coredump Off Off
                        suhosin.disable.display_errors Off Off
                        suhosin.executor.allow_symlink Off Off
                        suhosin.executor.disable_emodifier Off Off
                        suhosin.executor.disable_eval Off Off
                        suhosin.executor.eval.blacklist no value no value
                        suhosin.executor.eval.whitelist no value no value
                        suhosin.executor.func.blacklist no value no value
                        suhosin.executor.func.whitelist no value no value
                        suhosin.executor.include.blacklist no value no value
                        suhosin.executor.include.max_traversal 0 0
                        suhosin.executor.include.whitelist no value no value
                        suhosin.executor.max_depth 0 0
                        suhosin.filter.action no value no value
                        suhosin.get.disallow_nul 1 1
                        suhosin.get.disallow_ws 0 0
                        suhosin.get.max_array_depth 5000 5000
                        suhosin.get.max_array_index_length 256 256
                        suhosin.get.max_name_length 64 64
                        suhosin.get.max_totalname_length 256 256
                        suhosin.get.max_value_length 500000 500000
                        suhosin.get.max_vars 5000 5000
                        suhosin.mail.protect 0 0
                        suhosin.memory_limit 512435456 512435456
                        suhosin.mt_srand.ignore On On
                        suhosin.multiheader Off Off
                        suhosin.perdir 0 0
                        suhosin.post.disallow_nul 1 1
                        suhosin.post.disallow_ws 0 0
                        suhosin.post.max_array_depth 5000 5000
                        suhosin.post.max_array_index_length 256 256
                        suhosin.post.max_name_length 64 64
                        suhosin.post.max_totalname_length 256 256
                        suhosin.post.max_value_length 500000 500000
                        suhosin.post.max_vars 5000 5000
                        suhosin.protectkey On On
                        suhosin.request.disallow_nul 1 1
                        suhosin.request.disallow_ws 0 0
                        suhosin.request.max_array_depth 5000 5000
                        suhosin.request.max_array_index_length 256 256
                        suhosin.request.max_totalname_length 256 256
                        suhosin.request.max_value_length 500000 500000
                        suhosin.request.max_varname_length 64 64
                        suhosin.request.max_vars 5000 5000
                        suhosin.server.encode On On
                        suhosin.server.strip On On
                        suhosin.session.checkraddr 0 0
                        suhosin.session.cryptdocroot On On
                        suhosin.session.cryptkey [ protected ] [ protected ]
                        suhosin.session.cryptraddr 0 0
                        suhosin.session.cryptua On On
                        suhosin.session.encrypt On On
                        suhosin.session.max_id_length 128 128
                        suhosin.simulation Off Off
                        suhosin.sql.bailout_on_error Off Off
                        suhosin.sql.comment 0 0
                        suhosin.sql.multiselect 0 0
                        suhosin.sql.opencomment 0 0
                        suhosin.sql.union 0 0
                        suhosin.sql.user_postfix no value no value
                        suhosin.sql.user_prefix no value no value
                        suhosin.srand.ignore On On
                        suhosin.stealth On On
                        suhosin.upload.disallow_binary 0 0
                        suhosin.upload.disallow_elf 1 1
                        suhosin.upload.max_uploads 25 25
                        suhosin.upload.remove_binary 0 0
                        suhosin.upload.verification_script no value no value

                        xml

                        XML Support active
                        XML Namespace Support active
                        libxml2 Version 2.7.8

                        xmlreader

                        XMLReader enabled

                        xmlwriter

                        XMLWriter enabled

                        zlib

                        ZLib Support enabled
                        Stream Wrapper support compress.zlib://
                        Stream Filter support zlib.inflate, zlib.deflate
                        Compiled Version 1.2.3
                        Linked Version 1.2.3

                        Directive Local Value Master Value
                        zlib.output_compression Off Off
                        zlib.output_compression_level 1 1
                        zlib.output_handler no value no value

                        zmq

                        ZMQ extension enabled
                        ZMQ extension version @PACKAGE_VERSION@
                        libzmq version 2.1.7

                        Directive Local Value Master Value

                        Additional Modules

                        Module Name
                        pfSense
                        readline

                        Environment

                        Variable Value
                        HOME /
                        OLDPWD /
                        PATH /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                        PWD /usr/local/www
                        PHP_FCGI_CHILDREN 2
                        PHP_FCGI_MAX_REQUESTS 500

                        PHP Variables

                        Variable Value
                        _REQUEST["PHPSESSID"] e13cca999b4984b78514dc425c71271b
                        _COOKIE["PHPSESSID"] e13cca999b4984b78514dc425c71271b
                        _SERVER["HOME"] /
                        _SERVER["OLDPWD"] /
                        _SERVER["PATH"] /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                        _SERVER["PWD"] /usr/local/www
                        _SERVER["PHP_FCGI_CHILDREN"] 2
                        _SERVER["PHP_FCGI_MAX_REQUESTS"] 500
                        _SERVER["FCGI_ROLE"] RESPONDER
                        _SERVER["SERVER_SOFTWARE"] lighttpd/1.4.29
                        _SERVER["SERVER_NAME"] 192.168.0.1
                        _SERVER["GATEWAY_INTERFACE"] CGI/1.1
                        _SERVER["SERVER_PORT"] 443
                        _SERVER["SERVER_ADDR"] 192.168.0.1
                        _SERVER["REMOTE_PORT"] 4457
                        _SERVER["REMOTE_ADDR"] 192.168.2.186
                        _SERVER["SCRIPT_NAME"] /phpinfo.php
                        _SERVER["PATH_INFO"] no value
                        _SERVER["SCRIPT_FILENAME"] /usr/local/www/phpinfo.php
                        _SERVER["DOCUMENT_ROOT"] /usr/local/www/
                        _SERVER["REQUEST_URI"] /phpinfo.php
                        _SERVER["QUERY_STRING"] no value
                        _SERVER["REQUEST_METHOD"] GET
                        _SERVER["REDIRECT_STATUS"] 200
                        _SERVER["SERVER_PROTOCOL"] HTTP/1.1
                        _SERVER["HTTPS"] on
                        _SERVER["HTTP_HOST"] 192.168.0.1
                        _SERVER["HTTP_CONNECTION"] keep-alive
                        _SERVER["HTTP_USER_AGENT"] Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.1 (KHTML, like Gecko) Chrome/21.0.1180.49 Safari/537.1
                        _SERVER["HTTP_ACCEPT"] text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
                        _SERVER["HTTP_ACCEPT_ENCODING"] gzip,deflate,sdch
                        _SERVER["HTTP_ACCEPT_LANGUAGE"] en-US,en;q=0.8
                        _SERVER["HTTP_ACCEPT_CHARSET"] ISO-8859-1,utf-8;q=0.7,;q=0.3
                        _SERVER["HTTP_COOKIE"] PHPSESSID=e13cca999b4984b78514dc425c71271b
                        _SERVER["PHP_SELF"] /phpinfo.php
                        _SERVER["REQUEST_TIME"] 1343144697
                        _SERVER["argv"]
                        Array
                        (
                        )
                        _SERVER["argc"] 0
                        _ENV["HOME"] /
                        _ENV["OLDPWD"] /
                        _ENV["PATH"] /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
                        _ENV["PWD"] /usr/local/www
                        _ENV["PHP_FCGI_CHILDREN"] 2
                        _ENV["PHP_FCGI_MAX_REQUESTS"] 500
                        _ENV["FCGI_ROLE"] RESPONDER
                        _ENV["SERVER_SOFTWARE"] lighttpd/1.4.29
                        _ENV["SERVER_NAME"] 192.168.0.1
                        _ENV["GATEWAY_INTERFACE"] CGI/1.1
                        _ENV["SERVER_PORT"] 443
                        _ENV["SERVER_ADDR"] 192.168.0.1
                        _ENV["REMOTE_PORT"] 4457
                        _ENV["REMOTE_ADDR"] 192.168.2.186
                        _ENV["SCRIPT_NAME"] /phpinfo.php
                        _ENV["PATH_INFO"] no value
                        _ENV["SCRIPT_FILENAME"] /usr/local/www/phpinfo.php
                        _ENV["DOCUMENT_ROOT"] /usr/local/www/
                        _ENV["REQUEST_URI"] /phpinfo.php
                        _ENV["QUERY_STRING"] no value
                        _ENV["REQUEST_METHOD"] GET
                        _ENV["REDIRECT_STATUS"] 200
                        _ENV["SERVER_PROTOCOL"] HTTP/1.1
                        _ENV["HTTPS"] on
                        _ENV["HTTP_HOST"] 192.168.0.1
                        _ENV["HTTP_CONNECTION"] keep-alive
                        _ENV["HTTP_USER_AGENT"] Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.1 (KHTML, like Gecko) Chrome/21.0.1180.49 Safari/537.1
                        _ENV["HTTP_ACCEPT"] text/html,application/xhtml+xml,application/xml;q=0.9,
                        /;q=0.8
                        _ENV["HTTP_ACCEPT_ENCODING"] gzip,deflate,sdch
                        _ENV["HTTP_ACCEPT_LANGUAGE"] en-US,en;q=0.8
                        _ENV["HTTP_ACCEPT_CHARSET"] ISO-8859-1,utf-8;q=0.7,
                        ;q=0.3
                        _ENV["HTTP_COOKIE"] PHPSESSID=e13cca999b4984b78514dc425c71271b

                        PHP License

                        This program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file: LICENSE

                        This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

                        If you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact license@php.net.

                        –--------------------------------------------------------

                        At this point, I have blocking disabled until I get the whitelist issue resolved.

                        I am loading both the snort vrt and emergingthreats rules BTW.

                        1 Reply Last reply Reply Quote 0
                        • V
                          vbentley
                          last edited by

                          Thanks. It appears that the failure to load mbstring is something my box does and is not necessarily a build issue as your i386 has no problem loading mbstring functions.

                          I'm going to build another machine from a fresh CD just to be sure mine is not an upgrade fault. The one I am running was upgraded from the console on release 1.2.3 .

                          Trademark Attribution and Credit
                          pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

                          1 Reply Last reply Reply Quote 0
                          • M
                            Metu69salemi
                            last edited by

                            code brackets would help a lot for readability

                            1 Reply Last reply Reply Quote 0
                            • V
                              vbentley
                              last edited by

                              I rebuilt my pfSense host today using a completely fresh install on another hard drive. After correcting a few typos for 'gettet' that should be 'gettext' in snort_interfaces_global.php and snort_preprocessors.php, this problem with whitelists has been resolved. I suspect that it may have been caused by upgrading from the console a 1.2.3 system with Snort already installed instead of installing 2.0.1 from CD.

                              Trademark Attribution and Credit
                              pfSense® and pfSense Certified® are registered trademarks of Electric Sheep Fencing, LLC in the United States and other countries.

                              1 Reply Last reply Reply Quote 0
                              • J
                                JMBARRETO
                                last edited by

                                The WhiteList don't works for me too. Neither with networks or single IP adress.
                                I'm using PFSense 2.0.1 with Snort 2.9.2.3 pkg v.2.5.1.

                                After some days searching for solution I found a workaround that worked for me.
                                Add in Suppress List the networks in CIDR notation like that (example with 3 networks in supress list working as WhiteList):

                                suppress gen_id 0, sig_id 0, track by_src, ip [xxx.xxx.xxx.xxx/29,yyy.yyy.yyy.yyy/28,zzz.zzz.zzz.zzz/28]

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.