#1 can't run the binary version


I'm running Linux RedHat 9 workstation. In trying to run
the binary version of PyFlag, I get:

File "/usr/local/extras/flag/pyflag_bin_0.64/magic.py",
line 4, in ?
import _magic
ImportError: libmagic.so.1: cannot open shared object
file: No such file or directory.

What am I missing?

I also tried to compile the source release, but got
hopelessly lost in a tangle of requirements from Python,
TclTk, etc.

I've spent the last three months looking for a way to
decode network packets and store the headers and
data in an Oracle database. PyFlag appears to be what
I'm looking for, so I'm really hoping I can get it running.

Thanks much for any help you can give me.


  • Michael Cohen
    Michael Cohen

    • status: open --> closed
  • Michael Cohen
    Michael Cohen

    Logged In: YES

    Make sure you have libmagic installed on the system. I
    cant remember if rh9 uses libmagic for file. you can tell by
    doing an ldd on /usr/bin/file. If rh9 does not use libmagic
    on the system, you will need to install it to run the binary

    When it comes to compiling the source code you dont need tcl
    - but you need a couple of python/swig related things.

    If you just want to generate sql from the pcap file you may
    use the command line version of tethereal provided with the
    binary package. Sometime like:

    tethereal -G sql

    for the schema and:
    tethereal -Qxr pacapfile

    for generating the sql - or even:
    tethereal -Kr pcapfile

    for knowledgebase. If you wish to extend this you (e.g.
    support more protocols) you may add them by altering the
    ethereal patch in the source rather than compiling the whole
    thing (try cd sources, make).

    BTW we are trying to get people to use the new
    pyflag-support@sourceforge.net mailing list for this... If
    you are still having trouble, try mailing there.