[Oisf-devel] Suricata 1.2.1 + OpenBSD

Henri Wahl h.wahl at ifw-dresden.de
Fri Apr 27 07:42:39 UTC 2012

Hi Markus,

> Which packages do you have installed or do you build dependancies from
> source? If the later: how do you build them?

Like described on
I installed gcc, pcre, libtool, libyaml and libnet via pkg_add.

The pcap-related lines from ./configure look are these:

checking pcap.h usability... yes
checking pcap.h presence... yes
checking for pcap.h... yes
checking for pcap_open_live in -lpcap... yes
checking for pcap_activate in -lpcap... yes
checking for pcap_set_buffer_size in -lpcap... yes
checking for pkg-config... /usr/bin/pkg-config
checking pkg-config is at least version 0.9.0... yes
checking cap-ng.h usability... no
checking cap-ng.h presence... no
checking for cap-ng.h... no

   WARNING!  libcap-ng library not found, go get it
   from http://people.redhat.com/sgrubb/libcap-ng/
   or check your package manager.

   Suricata will be built without support for dropping privs.

On the same machine at the moment runs Snort 2.9.1 which I want to
replace with Suricata and this Snort needed adding libpcap from
tcpdump.org. Might there be interferences between
/usr/local/include/pcap.h and /usr/include/pcap.h? Anyway, compiling of
Suricata even fails on machines withaut the extra libpcap.

Henri  Wahl

> Regards,
> Markus
> _______________________________________________
> Oisf-devel mailing list
> Oisf-devel at openinfosecfoundation.org
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel

Henri Wahl

IT Department
Leibniz-Institut für Festkörper- u.
Werkstoffforschung Dresden

tel. (03 51) 46 59 - 797
email: h.wahl at ifw-dresden.de

Nagios status monitor for your desktop:

IFW Dresden e.V., Helmholtzstraße 20, D-01069 Dresden
VR Dresden Nr. 1369
Vorstand: Prof. Dr. Ludwig Schultz, Dr. h.c. Dipl.-Finw. Rolf Pfrengle

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4706 bytes
Desc: S/MIME Kryptografische Unterschrift
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-devel/attachments/20120427/29208d7a/attachment.bin>

More information about the Oisf-devel mailing list