Newbie question

["Foster, Ken" <KFoster () federatedinv com>]

I'm new to snort, so forgive simple question. I'm reading in a file in
tcpdump format and it has a few Code Red II packets that I can see when
I dump in hex, but I don't know why http inspect preprocessor isn't
detecting it. Is it because Code Red is too old? Http inspect is
detecting other packets so I know it's functioning to some degree.
Thanks.
 
-Ken Foster