-
Notifications
You must be signed in to change notification settings - Fork 56
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Installation on ArchLinux #20
Comments
and this is how you should realise NOT to provide dff-build.sh. The software should have a proper CMakeLists.txt (which this project has already). Let distro maintainers do it right. P.S. I'm creating an ebuild for Pentoo Linux right now, and it will look very similar with ArchLinux packages |
Hey @noraj1337, do take a look at the PKGBUILD I just published on the AUR. Let me know if you encounter any problems building it. |
Gentoo/Pentoo ebuild is here as well: |
As you can see, both build packages are UGLY. As I said, DFF developers should review all patches, sed changes, etc and fix DFF properly. |
@blshkv I have to agree, some of their codes aren't very up to date. One example is the latest ICU not being detected in their old yet customized FindICU.cmake. Other problems include python3 and python2 conflicts. My headache for the past 4 days is almost over... I placed a pull request to the repo and tested building on both Debian & ArchLinux. |
@jarylc 4 days?!.. wow ... out of curiosity, I've looked at your PKGBUILD .. It looks like arch linux does not provide any utilities and that's why you have to do everything manually using bash commands. It took me an hour probably. Yes, the same problem with ICU, so I just commented out 2 depreciated lines . No problem with python because it is handled by a distro eclases. Well, except linux_launcher.sh which is python (not a shell) script apprentely. SICK! One of the hardest problem was broken code in dff-api/search/CMakeLists.txt file . It does not install |
@jarylc : I commented your AUR package: https://aur.archlinux.org/packages/dff-git/#comment-578098
|
You are missing reglookup (and may be others). See my ebuild. P.S. I'm working with reglookup upstream on Scons improvements, see pentoo/pentoo-overlay#145 |
@noraj1337 @blshkv Also Reglookup on the AUR currently only installs for Python 3, we need to copy the site-packages over to Python 2 libraries for support. I have no control over that package as it's maintained by someone else. I could make python2-reglookup, but that would be redundant. I'll wait for the maintainer's reply or action to my comment. @blshkv I'm not sure if what you are pushing to Scons repo would fix this as I've not read it yet. Will take a look later. @noraj1337 Look at my reply and pinned comment on the AUR on how to fix this. |
Ha! I didn't realise that this old (2011) tool supports python3 as well. Thanks, fixed! |
I see dff is included in blackarch now : https://blackarch.org/forensic.html But both dff from blackarch and from git doesn't work now. There is a segmentation fault.
And I have some python errors when asking help:
No python error with update: this is DFF 1.4.0 - dff-183.d40d46b-1 |
@noraj1337 oh DFF got updated to 1.4.0? Seems like I need to recreate the patch files again if changes were made. edit: oh, I don't think it was a DFF update that caused it because it wasn't updated... Probably a new update to either python 2, qt4, swig or any other build tool that caused it... I'll check it out when I have the time. EDIT: I found some problems regarding the latest version of python2-pyqt4. Reference http://stackoverflow.com/questions/37604532/python-2-7-11-importerror-cannot-import-name-qtwebkit-kali-linux-debian-8#37616466 I'll need to find time to perform the hard fix. |
Hi guys! Sorry for this long delay but we had lots of "business" stuff to manage and as you may have seen we are currently closing ArxSys. However, that does not mean it's the end of the development of DFF. We will soon release everything on github and there will be huge changes which may resolve your issues. We are going to work on this merge during the following days. |
@udgover Good news for DFF and sorry for ArxSys. |
Have there been any new developments on the current situation since this post? I have tried compiling DFF 1.3.6 from source on Debian 9.5 (Stretch), but so far I have been unable to compile it in any way. The repo 'http://repo.digital-forensic.org/debian' used for a normal installation on Debian Jessie/Stretch, doesn't exist anymore , so there is no way that this is going to work anymore, meaning that option has become outdated. I have found another guide to install an older version of DFF using the Kali Linux repo, but that does not change the fact that I'm still not willing to give up on DFF 1.3.6. When I tried to compile DFF 1.3.6 from source I ended up with some problems with the actual compilation itself, unrelated to the dependencies or prerequisites needed for the compilation. So I'm going to ask this question as a plea for help, if anyone out there is still reading this. Has anyone actually been able to compile DFF 1.3.6 on Debian Jessie and/or Stretch? I'm not willing to take a no on this matter since I'm sure there might be a simple solution for this problem. One I'm unable to find at the moment. I hope someone is able and willing to work with me on this here? Thanks in advance! |
No. dff is dead. The quality of code is bad and should not be used for forensic investigations |
On arxsys there is instruction to install dff from sources but all dependencies are given for Debian.
Can you give a ArchLinux install guide or only depencies will be enought.
Thanks
The text was updated successfully, but these errors were encountered: