Re: [Spam] Re: Possible FP 17363

["Lay, James" <james.lay () wincofoods com>]

Thanks Joel,

I think I get it.  Hopefully not off topic, but what's the..."life" of a rule?  Is the below correct?

1.  Initial rule published to Subscription Users
2.  Updates made/rev changed (if needed)
3.  Published to Registered Users after 30 days
4.  All updates to the rule go back to step 1

If this is the case, then this explains why I have rev 1 of rule 17363, while Subscription Users have rev 3.  Do I have 
it right?

Thanks.

James   

-----Original Message-----
From: Joel Esler [mailto:jesler () sourcefire com] 
Sent: Tuesday, October 26, 2010 11:17 AM
To: Lay, James
Cc: <snort-sigs () lists sourceforge net>
Subject: Re: [Snort-sigs] [Spam] Re: Possible FP 17363

While the VRT can do millions of tests against rules, it's also very helpful for us to receive these reports from our 
rule users (registered or subscriber). VRT can't emulate every kind of traffic that you all will run into. Updates are 
our way of making things more efficient and less false positive prone. 

J


Sent from my iPhone

On Oct 26, 2010, at 1:01 PM, "Lay, James" <james.lay () wincofoods com> wrote:

> I think this changes my thoughts on what the free registered feed is…from “30 days old” to “30 days old and possibly 
> broken”.
------------------------------------------------------------------------------
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in  U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store 
http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs