-
Notifications
You must be signed in to change notification settings - Fork 1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Error response from daemon: No such container:dionaea #29
Comments
Any help? |
Hi, Hard to tell from remote. The ubuntu base is tried to feth from time to time new images, therefore after this timeframe everything |
I did restart both VM and host machine but to no avail. Following best practices, I just loaded up a snapshot where everything was working fine. The error is quite strange as I did nothing that might have damaged the system. It was just running |
I am getting the same error when I load I have no idea why it seems to be related with dionaea only |
I tried to pull the latest image using sudo docker pull dionaea. This resulted in an error: image/library dionaea not found |
I am assuming you are not running the VM 24/7? These steps are done automatically every night. |
When I try to run dcres.sh the terminal outputs waiting for services or that I have to wait for 5 minutes of uptime before I can run the command |
I left the VM alone maybe it was just taking some time but then decided to stop the dces.sh script and it was at that time that the Waiting for services ... was happening again. |
Yesterday I loaded a snapshot of the system when dionaea was working and now I loaded the changed state of the snapshot and dionaea is not working. Giving me the prompt as shown above |
regarding the dcres.sh, apart from getting stuck after cowrie starts running, before it says "docker rmi requires a minimum of 1 argument" |
The error message regarding 1 argument is fine and means that there is no obsolete image to delete. Run the following commands and post the outputs as text:
Did you install any packages? If we want to get a hold on what is going on please do not make any changes to the vm we are investigating. |
sudo netstat -anp | grep 445 tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 566/smbd sudo docker images REPOSITORY TAG IMAGE ID CREATED SIZE sudo cat etc/init/dionaea.conf ######################################################## T-PotDionaea upstart scriptv16.03.6 by mo, DTAG, 2016-03-03######################################################## description "Dionaea" Remove any existing dionaea containersmyCID=$(docker ps -a | grep dionaea | awk '{ print $1 }') Remove any data from previous container if persistence is not enabledif ! [ -f /data/persistence.on ]; Delay next start to avoid rapid respawningsleep 2 sudo cat /data/upstart/dionaea.conf ######################################################## T-PotDionaea upstart scriptv16.03.6 by mo, DTAG, 2016-03-03######################################################## description "Dionaea" Remove any existing dionaea containersmyCID=$(docker ps -a | grep dionaea | awk '{ print $1 }') Remove any data from previous container if persistence is not enabledif ! [ -f /data/persistence.on ]; Delay next start to avoid rapid respawningsleep 2 sudo cat /etc/crontab /etc/crontab: system-wide crontabUnlike any other crontab you don't have to run the `crontab'command to install the new version when you edit this fileand files in /etc/cron.d. These files also have username fields,that none of the other crontabs do.SHELL=/bin/sh m h dom mon dow user command17 * * * * root cd / && run-parts --report /etc/cron.hourly Show running containers every 60s via /dev/tty2*/2 * * * * root status.sh > /dev/tty2 Check if containers and services are up*/5 * * * * root check.sh Check if updated images are available and download them27 1 * * * root for i in $(cat /data/images.conf); do docker pull dtagdevsec/$i:latest1603; done Restart docker service and containers27 3 * * * root dcres.sh Delete elastic indices older than 90 days (kibana index is omitted by default)27 4 * * * root docker exec elk bash -c '/usr/local/bin/curator --host 127.0.0.1 delete indices --older-than 90 --time-unit days --timestring '%Y.%m.%d'' Update IP and erase check.lock if it exists27 15 * * * root /etc/rc.local Check for updated packages every sunday, upgrade and reboot27 16 * * 0 root apt-get autoclean -y; apt-get autoremove -y; apt-get update -y; apt-get upgrade -y; sleep 5; reboot sudo docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES sudo docker -v Docker version 1.10.3, build 20f81dd sudo cat /var/log/upstart/dionaea.log rm: cannot remove '/data/ews/dionaea/ews.json': No such file or directory sudo cat /var/log cat: /var/log: Is a directory sudo status.sh ======| System |====== ======| Container: cowrie |====== ======| Container: dionaea |====== ======| Container: elasticpot |====== ======| Container: elk |====== ======| Container: glastopf |====== ======| Container: honeytrap |====== ======| Container: suricata |====== sudo ls -al /data/dionaea/ total 28 sudo ls -al /data/ total 124 sudo iptables -L Chain INPUT (policy ACCEPT) Chain FORWARD (policy ACCEPT) Chain OUTPUT (policy ACCEPT) Chain DOCKER (1 references) Chain DOCKER-ISOLATION (1 references) sudo lshw ce145804980927713 sudo lscpu Architecture: x86_64 sudo cat /proc/meminfo MemTotal: 6145444 kB sudo free -m
Mem: 6001 2112 3889 1 64 342 sudo swapon -s Filename Type Size Used Priority sudo lsb_release -a No LSB modules are available. sudo uname -a Linux ce145804980927713 4.2.0-27-generic #32~14.04.1-Ubuntu SMP Fri Jan 22 15:32:26 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux sudo fdisk -l Disk /dev/sda: 68.7 GB, 68719476736 bytes Device Boot Start End Blocks Id System sudo blkid /dev/sda1: UUID="be1cf745-622b-4fa0-99f9-4595a674dec5" TYPE="swap" sudo df -HT Filesystem Type Size Used Avail Use% Mounted on sudo netstat -tulpn Active Internet connections (only servers) |
What I did install was samba. The only permissions that I know of is when I create a script and chmod 700 it. I tried to force start dionaea once. I did not change and system/config files. What I cannot understand is how when loading a snapshot dionaea starts working fine, when I shutdown and use the changed state of the loaded snapshot the day after, it gives No such container. |
There you have it: If you make changes like that it is helpful mentioning first when opening the issue 😉 |
That was it!! Life saver. Thankyou very much much :) |
After 6hrs of the system running non-stop without any issues, when doing status.sh, I get Error response from daemon: No such container: dionaea. This happened just now.
Before restarting the VM, container cowrie also stopped running. What is the problem? Should I restart the host machine?
The text was updated successfully, but these errors were encountered: