Snort mailing list archives
Re: FW: Oinkmaster can t get rules
From: JJC <cummingsj () gmail com>
Date: Wed, 28 Jul 2010 09:25:36 -0600
Can you execute a verbose run -vv and see what the output is? As to running on XP, I cannot say as I have not tested on XP, or any Windows platform. I would say that it is likely that the 403 is not being caused by an OS related issue, though it could be. On Wed, Jul 28, 2010 at 5:10 AM, Jun Wan <junwei_wan () hotmail com> wrote:
I used the updated pulledpork-0.4.2, tried it again: C:\snort\pulledpork-0.4.2>pulledpork.pl -o c:\snort\rules -O a93935045xxxxxxx52c b7a18df2e1fded2db292e159e81474a324c3396b460486f72dfb74c2b468c -f snortrules-snap shot-2853.tar.gz -c c:\snort\pulledpork-0.4.2\etc\pulledpork.conf -b c:\snort\pu lledpork-0.4.2\etc\dropsid.conf -i c:\snort\pulledpork-0.4.2\etc\disablesid.con f -b c:\snort\etc\sid-msg.map -h c:\snort\log\sid_changes.log -I security -H Please see the following outcome: http://code.google.com/p/pulledpork/ _____ ____ `----,\ ) `--==\\ / Pulled_Pork v0.4.2 `--==\\/ .-~~~~-.Y|\\_ Copyright (C) 2009-2010 JJ Cummings @_/ / 66\_ cummingsj () gmail com | \ \ _(") \ /-| ||'--' Rules give me wings! \_\ \_\\ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 'uname' is not recognized as an internal or external command, operable program or batch file. Checking latest MD5.... A 403 error occured, please wait for the 15 minute timeout to expire before trying again or specify the -n runtime switch You may also wish to verfiy your oinkcode! Error 403 when fetching http://www.snort.org/snortrules-snapshot-2853.ta r.gz.md5 at C:\snort\pulledpork-0.4.2\pulledpork.pl line 303. I would like to ask following three questions: 1.) Can pulledpork-0.4.2 run on WindowsXP? 2.) What's the mean "'uname' is not recognized as an internal or external command..."? (didn't have this when I used pulledpork.pl in pulledpork-0.3.4) 3.) How to fix the issue of "failing on the md5 file for that rules set..."? do I need to copy the "d11b9d884f940a0df293718a4d4b3913" (MD5SUM) into some files such as "pulledpork.pl"? Any info and help would be much appreciated. Thanks. Regards JohnDate: Tue, 27 Jul 2010 00:05:50 -0400 From: wkitty42 () windstream netTo: snort-users () lists sourceforge net Subject: Re: [Snort-users] FW: Oinkmaster can t get rulesOn 7/26/2010 22:34, Jun Wan wrote:Checking latest MD5.... A 403 error occured, please wait for the 15 minute timeout to expire before trying again or specify the -n runtime switch Error 403 when fetching <http://www.snort.org/pub-bin/oinkmaster.cgi/snor>http://www.snort.org/pub-bin/oinkmaster.cgi/snortrules-snapshot-2853.tar.gz.md5 at C:\snort\pulledpork-0.3.4\pulledpork.pl line 269this is failing on the md5 file for that rules set... that version of pulled pork you are using looks to be a bit old... updateto thelatest version and see if that works for you...------------------------------------------------------------------------------The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://ad.doubleclick.net/clk;226879339;13503038;l? http://clk.atdmt.com/CRS/go/247765532/direct/01/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users------------------------------ Looking for a hot date? View photos of singles in your area!<http://clk.atdmt.com/NMN/go/150855801/direct/01/> ------------------------------------------------------------------------------ The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://ad.doubleclick.net/clk;226879339;13503038;l? http://clk.atdmt.com/CRS/go/247765532/direct/01/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------------------------------ The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Re: FW: Oinkmaster can't get rules, (continued)
- Re: FW: Oinkmaster can't get rules Nigel Houghton (Jul 26)
- Re: FW: Oinkmaster can't get rules Joel Esler (Jul 26)
- Re: FW: Oinkmaster can t get rules waldo kitty (Jul 26)
- Re: FW: Oinkmaster can t get rules waldo kitty (Jul 26)
- Re: FW: Oinkmaster can't get rules JJC (Jul 26)
- Re: FW: Oinkmaster can't get rules Jun Wan (Jul 26)
- Re: FW: Oinkmaster can't get rules Joel Esler (Jul 26)
- Re: FW: Oinkmaster can't get rules Jun Wan (Jul 26)
- Re: FW: Oinkmaster can t get rules waldo kitty (Jul 26)
- Re: FW: Oinkmaster can t get rules Jun Wan (Jul 28)
- Re: FW: Oinkmaster can t get rules JJC (Jul 28)
- Re: FW: Oinkmaster can t get rules waldo kitty (Jul 26)