Adapter error log message on Graylog startup


(Gianluca Valentini) #1

Hi all,
I’m using Docker Graylog 2.4.3+2c41897 on graylog-plus-8496868d58-7rdd5 (Oracle Corporation 1.8.0_72-internal on Linux 4.4.0-119-generic).

It start and work fine but in the log file I always find the error message below:

2018-04-18 14:37:35,353 ERROR: org.graylog2.plugin.lookup.LookupDataAdapter - Couldn’t start data adapter tor-exit-node/5ad73c0e54eed20001aade51/@901a802
org.graylog.plugins.threatintel.tools.AdapterDisabledException: TOR service is disabled, not starting TOR exit addresses adapter. To enable it please go to System / Configurations.
at org.graylog.plugins.threatintel.adapters.tor.TorExitNodeDataAdapter.doStart(TorExitNodeDataAdapter.java:73) ~[?:?]

2018-04-18 14:37:35,352 ERROR: org.graylog2.plugin.lookup.LookupDataAdapter - Couldn’t start data adapter spamhaus-drop/5ad73c0e54eed20001aade4e/@7c42abe5
org.graylog.plugins.threatintel.tools.AdapterDisabledException: Spamhaus service is disabled, not starting (E)DROP adapter. To enable it please go to System / Configurations.
at org.graylog.plugins.threatintel.adapters.spamhaus.SpamhausEDROPDataAdapter.doStart(SpamhausEDROPDataAdapter.java:68) ~[?:?]

2018-04-18 14:37:35,358 ERROR: org.graylog2.plugin.lookup.LookupDataAdapter - Couldn’t start data adapter abuse-ch-ransomware-domains/5ad73c0e54eed20001aade4d/@76658368
org.graylog.plugins.threatintel.tools.AdapterDisabledException: Abuse.ch service is disabled, not starting adapter. To enable it please go to System / Configurations.
at org.graylog.plugins.threatintel.adapters.abusech.AbuseChRansomAdapter.doStart(AbuseChRansomAdapter.java:80) ~[?:?]

2018-04-18 14:37:35,347 ERROR: org.graylog2.plugin.lookup.LookupDataAdapter - Couldn’t start data adapter abuse-ch-ransomware-ip/5ad73c0e54eed20001aade50/@10261dd4
org.graylog.plugins.threatintel.tools.AdapterDisabledException: Abuse.ch service is disabled, not starting adapter. To enable it please go to System / Configurations.
at org.graylog.plugins.threatintel.adapters.abusech.AbuseChRansomAdapter.doStart(AbuseChRansomAdapter.java:80) ~[?:?]

2018-04-18 14:38:04,076 INFO : org.glassfish.grizzly.http.server.HttpServer - [HttpServer] Started.

This is my Threat configuration
image

How I can fix this problem?
It seems similar to issue 55 that is marked as closed.

So probably do I miss something to set??

Thanks
Gianluca


(Jochen) #2

You can ignore these error messages. The information shouldn’t be logged on ERROR level anyway.


(Gianluca Valentini) #3

Ok thanks.
So it will be fixed in the future or I need to create a pull request?

Thanks


(Jochen) #4

Feel free to create a pull request fixing the issue.

Other than that, it will probably be changed in some future version.


(Gianluca Valentini) #5

Ok thanks a lot :+1::+1:


(system) #6

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.