Re: [Spam] Re: Possible FP 17363

["Lay, James" <james.lay () wincofoods com>]

I see.  The personal price is nice, however I’m sure I would have to go business subscription.  I guess I’ll stop 
posting false positives for snort rules to the sig group since maybe it’s already fixed.  From the site:

 

Sourcefire Vulnerability Research Team™ (VRT) Rules are the official rules of snort.org. Each rule is developed and 
tested using the same rigorous standards the VRT uses for Sourcefire customers.

 

and

 

Registered users of Snort.org are able to download and use VRT rules free of charge 30 days after their initial release 
date.

 

I think this changes my thoughts on what the free registered feed is…from “30 days old” to “30 days old and possibly 
broken”.

 

Thanks for the clarification.

 

James

 

From: Joel Esler [mailto:jesler () sourcefire com] 
Sent: Tuesday, October 26, 2010 10:46 AM
To: Weir, Jason
Cc: <snort-sigs () lists sourceforge net>
Subject: Re: [Snort-sigs] [Spam] Re: Possible FP 17363

 

When new rules, or updated rules are released, they are released into the subscriber package for 30 days, which, like I 
said is available for a personal subscription for 29$ a year. After the 30-days from release they are rolled over to 
the free registered feed. 

 

J

Sent from my iPhone


On Oct 26, 2010, at 12:11 PM, "Weir, Jason" <jason.weir () nhrs org> wrote:

        funny you used the term bleeding edge....  

         

        I'll let Joel explain the different rule sets available from VRT but if you are getting your bleeding edge 
rules from Emerging Threats...

         

        -J

                -----Original Message-----
                From: Lay, James [mailto:james.lay () wincofoods com] 
                Sent: Tuesday, October 26, 2010 12:06 PM
                To: snort-sigs () lists sourceforge net
                Subject: Re: [Snort-sigs] [Spam] Re: Possible FP 17363

                So let me understand this.  My understanding of the Subscription Rules were that these were the latest 
and greatest bleeding edge rules…especially for 0-day items, new malware, trojans, etc.  The Subscription Rules also 
contained “fixed” rules?

                 

                From: Joel Esler [mailto:jesler () sourcefire com] 
                Sent: Tuesday, October 26, 2010 8:55 AM
                To: Lay, James
                Cc: snort-sigs () lists sourceforge net
                Subject: [Spam] Re: [Snort-sigs] Possible FP 17363
                Importance: Low

                 

                Pastebin.

                 

                However, you aren't receiving the rule yet because it has not come out of the 30 day window for 
registered users.

                 

                J

------------------------------------------------------------------------------
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in  U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store 
http://p.sf.net/sfu/nokia-dev2dev

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs