[Oisf-users] Recommend version of 'file/libmagic' for suricata?

Cooper F. Nelson cnelson at ucsd.edu
Wed Jul 10 22:04:24 UTC 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I've encountered an issue similar to the one described in this bug-report:

https://redmine.openinfosecfoundation.org/issues/437

In my case, file extraction does not seem to work at all with the
version of file/libmagic that ships with the current Gentoo release
(currently "file 5.12").

I noticed that suricata can be configured using a static/local version
of libmagic via these flags:

>   --with-libmagic-includes=DIR  libmagic include directory
>   --with-libmagic-libraries=DIR    libmagic library directory

So, is there a recommend version of file to statically link to suricata
to enable file extraction?  And if so, what version is it and where can
I find the source?

- -- 
Cooper Nelson
Network Security Analyst
UCSD ACT Security Team
cnelson at ucsd.edu x41042
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJR3dpoAAoJEKIFRYQsa8FWLFEIAKWs2wHtFkPsjaKG3WU6Y+J2
9XlF7RGs4j3NPEZZG/jJAV2X/MT/zUn+dQReCd+iFO1V806P4k2+9b+/7iNL1mJb
+2sANoY++cZhtLwAaHK/vx1Peq8hZ7MZjVIAFWNeZjebAhfdA/KRGExdNhoux1VN
Jhopm8i0N+/kJv2R0ZWO0j0peZsBdzV8qK6ZzF31bMqkL6d/Ucq/moUb3+pxA4AS
h8iLJTC7NvIRGefWbCIBrmu4GOIJZGivr9kfzo600A7vAgPGMxS0tAo52ZBxC/ym
ouzfop5smd5CKAvE6CJ89W5YR/kgAi8qJWl4NRNkmwImf0a+m78GM//zlZ6WvOk=
=uaCO
-----END PGP SIGNATURE-----


More information about the Oisf-users mailing list