Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Snort Rules

From: Joel Esler <jesler () sourcefire com>
Date: Wed, 19 Sep 2012 14:16:16 -0400
On Sep 19, 2012, at 12:59 PM, PR <oly562 () gmail com> wrote:


does one have to use precompiled binaries for initial install?


Not if you don't want to.


can we just leave out this line, since this servers is 12.04 not 10.04
ubuntu server?

referring to this howto

sudo
cp /usr/local/snort/so_rules/precompiled/Ubuntu-10-4/i386/2.9.3.0/* /usr/local/snort/lib/snort_dynamicrules



We support 12.04, perhaps you need to specify the correct version and arch in your pulledpork.conf

https://www.snort.org/snort-rules/shared-object-rules



also, isn't the version 2.9.3.1? not .0?


It should be automatically detected by pulledpork.  But it is possible to manually specify it in the pulledpork.conf



when do you guys usually change versions, and will any 2.9.x.x version
work with 2.9.3 snort tar?


Generally, but not always.  We recommend that you stay current.


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: