BotHunter®
TROUBLESHOOTING GUIDE
Last Update: 05 June 2009
www.bothunter.net




This document summarizes issues encountered by users and approaches to addressing these problems. If you encounter technical problems when installing or operating BotHunter, please consult this document before submitting a question to our feedback form.  

This documented is continually updated.  

On my Linux system, the root installation procedure appears to hang at the line "Performing initial installation of local components." What should I do?

We too have sometimes observed delays of several minutes at this point in the installation on certain Linux systems running Sun's JRE 1.5.0.  The installation will complete, and this is a one-time event; please be patient.  The delay is occurring during the generation of a cryptographic keystore used by BotHunter's component update facility.  Later versions of the JRE do not appear to be affected.


When I start the BotHunter installation a blank window labeled "EULA" pops up.  What should I do?

      Try waiting a bit, and don't close the window.  On some systems the EULA window may be very slow, but it should appear eventually. If you are using GNU Java (gij), this is a known issue, and you should install and use a Sun compatible JRE instead.


On my Macintosh, I opened botHunterInstall.jar and accepted the "EULA" and then nothing happened .  What is the problem?

      The installation of BotHunter requires a bit more work.  For complete description, click here.


I am seeing an error similar to one of the following when I start BotHunter:

   Error: caught exception requesting update from
   https://130.107.10.11:5242/cgi-bin/update: java.io.IOException: Broken pipe
   Updates applied:    -1

   Error: caught exception requesting update from
   https://130.107.10.11:5242/cgi-bin/update:gnu.javax.net.ssl.provider.AlertException:  
   HANDSHAKE_FAILURE: remotely generated; FATAL
   Updates applied:    -1

     This is a known issue with GNU Java (gij), and we are investigating.  BotHunter will still function, but it will be unable to connect to the SRI repository.  Please install and use a Sun compatible JRE instead.


The BotHunter GUI panel indicates that the repository status remains in an unable to connect state for a prolonged period of time.

     It is possible that your network filtering policy does not allow BotHunter to communicate with the automated threat intelligence updating services and infection profile repository.   These protocols are linked and require outbound access to TCP ports 5242 and 6282.  See your user guide under subsection Connection Requirements for more information.



SRI International                                                                                              http://www.bothunter.net



BotHunter®

 

Links:


Getting Help:

    Forum.BotHunter.Net

BotHunter Developers
Sponsors

   Army Research Office (ARO)
  

Important Sites



Notice
BotHunter is a
U.S. Registered Trademark of

SRI International
333 Ravenswood Avenue
Menlo Park, CA 94025