Snort mailing list archives
Re: Is there an easy way of knowing if your definitions are updated?
From: Joel Esler <jesler () sourcefire com>
Date: Fri, 14 Jan 2011 10:33:52 -0500
What is the date on the actual file that you downloaded from the site? (Incidentally, that is the time stamp on the version of RPC rules that I have as well.) J On Jan 13, 2011, at 10:29 PM, ccie 6862 wrote:
I've looked at the various rule files, and some have a date stamp, while others don't. Even though the rpc.rules file is updated (AFAIK), the version shows the following: # $Id: rpc.rules,v 1.107.2.11 2010/10/26 16:30:34 vrtbuild Exp $ This is the same for the various rule files where the date stamp is several months out. We get the email every night, but there is always a question in the back of our minds if things are current. What are other people doing? Thanks ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
-- Joel Esler jesler () sourcefire com http://blog.snort.org && http://blog.clamav.net ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Is there an easy way of knowing if your definitions are updated? ccie 6862 (Jan 13)
- Re: Is there an easy way of knowing if your definitions are updated? Joel Esler (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? waldo kitty (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? Joel Esler (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? JJC (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? waldo kitty (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? Joel Esler (Jan 14)
- Re: Is there an easy way of knowing if your definitions are updated? waldo kitty (Jan 15)
- Re: Is there an easy way of knowing if your definitions are updated? Russ Combs (Jan 17)
- Re: Is there an easy way of knowing if your definitions are updated? Joel Esler (Jan 14)