Re: Unexpected results with reputation preprocessor - solved

["Joel Esler (jesler)" <jesler () cisco com>]

On May 13, 2014, at 9:57 AM, Dave Corsello <snort-users () wintertreemedia com<mailto:snort-users () wintertreemedia 
com>> wrote:

I second James' request for "official" documentation of how to configure Snort IPS.  Some of us open source users are 
using Snort inline, basing our configuration on documentation that we've pieced together from various sources.  We 
might be getting it mostly right, but as I've demonstrated, we might be getting some details wrong, possibly leaving 
ourselves more vulnerable than we think we are.  So, if possible, it would be great to see things laid out clearly in 
one document, so that there's no guesswork involved.

This is definitely something we want up there.  I just don’t have the time to do it right now with the 100 other things 
I’ve been cranking on.

If anyone would be willing to dedicate the time to do it, I’ll send you some nice swag gifts.  (Ask James Lay how nice 
it is ;)

--
Joel Esler
Open Source Manager
Threat Intelligence Team Lead
Vulnerability Research Team

------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos.
Get unparalleled scalability from the best Selenium testing platform available
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!