[Oisf-users] Issues with Application Layer Filtering
Jason Batchelor
jxbatchelor at gmail.com
Sat Jun 7 12:24:45 UTC 2014
Brief update for the group.
I removed libhtp and Suri and then rebuilt using the ZIP download versions
of the content above. Unfortunately I continue to experience the same issue
at the App layer. I'm interested in working with those in front of libhtp
to determine if that is the issue. Please let me know what I might be able
to offer to support understanding/resolving this issue? Many thanks in
advance!
On Fri, Jun 6, 2014 at 6:23 PM, Cooper F. Nelson <cnelson at ucsd.edu> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> This sounds almost like it might be an issue with libhtp.
>
> As a sanity check would you be interested in trying my build script for
> the current dev release?
>
> > #!/bin/sh
> >
> > export CFLAGS="-O3 -pipe -march=native"
> >
> > git clone git://phalanx.openinfosecfoundation.org/oisf.git
> >
> > cd oisf
> >
> > git clone git://github.com/ironbee/libhtp.git
> >
> > ./autogen.sh
> >
> > ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var
> >
> > make install && ldconfig
>
> Feel free to change the configure options as needed.
>
> On 6/6/2014 4:13 PM, Jason Batchelor wrote:
> >
> >
> > Spun up Suri and retested, unfortunately I'm still having the same
> > problem :/
> >
> > Baffled by this one so far?
> >
>
> >
>
> - --
> Cooper Nelson
> Network Security Analyst
> UCSD ACT Security Team
> cnelson at ucsd.edu x41042
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.17 (MingW32)
> Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
>
> iQEcBAEBAgAGBQJTkk2GAAoJEKIFRYQsa8FWk/AH/iqn+mQXcqk2w71jWhjG2voo
> AxHEjF72jzuKLt6KGClhNQKVbf1XT03yeBwfawikt+04+Ibfp3cO/bTcPjmih5lm
> Gh9i3F64lFIbvlFzjhvsxZW3eYAwTZPsQ7/kt6CUYjFLv65VzgVCmKVFxwCAW2Nz
> kJUHCYcsQnaRRPDj92ddI0cUA60Qj4wV0h1nMT8u2tHAm/dCSeGnGo9TagXwTG4Z
> ON+s1u9+4exUADnstEG4SqrQq9Zxp5yPaDede694vNaeNv6y6ZYC3Zgax/Zm3GOj
> urXmaW1A8BMsi5JW4HTQVFgqOOm3FJYTYF8Sv85a2B3PFwe5eETPw1budWxNXt4=
> =tdL6
> -----END PGP SIGNATURE-----
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20140607/24d4077e/attachment-0002.html>
More information about the Oisf-users
mailing list