Re: Is there an easy way of knowing if your definitions are updated?

[JJC <cummingsj () gmail com>]

Use or create a tool that tracks changes.

On Fri, Jan 14, 2011 at 9:23 AM, Joel Esler <jesler () sourcefire com> wrote:
> Waldo,
>
> If you run into these, please let VRT know.
>
> But that stuff should be fixed now.
>
> J
>
> On Jan 14, 2011, at 10:46 AM, waldo kitty wrote:
>
> > On 1/13/2011 22:29, ccie 6862 wrote:
> > > I've looked at the various rule files, and some have a date stamp, while others don't. Even though the rpc.rules 
> > > file is updated (AFAIK), the version shows the following:
> > >
> > > # $Id: rpc.rules,v 1.107.2.11 2010/10/26 16:30:34 vrtbuild Exp $
> > >
> > > This is the same for the various rule files where the date stamp is several months out. We get the email every 
> > > night, but there is always a question in the back of our minds if things are current.
> > >
> > > What are other people doing?
> >
> > make sure that you are looking all the way thru the files... some of them got
> > farkled a few months back and the new data (rules lines) are/were being tacked
> > on to the head of the file instead of the tail below the header... there are a
> > few that are still messed up IIRC from the last time i went wading...
> >
> > ------------------------------------------------------------------------------
> > Protect Your Site and Customers from Malware Attacks
> > Learn about various malware tactics and how to avoid them. Understand
> > malware threats, the impact they can have on your business, and how you
> > can protect your company and customers by using code signing.
> > http://p.sf.net/sfu/oracle-sfdevnl
> > _______________________________________________
> > Snort-users mailing list
> > Snort-users () lists sourceforge net
> > Go to this URL to change user options or unsubscribe:
> > https://lists.sourceforge.net/lists/listinfo/snort-users
> > Snort-users list archive:
> > http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
> --
> Joel Esler
> jesler () sourcefire com
> http://blog.snort.org && http://blog.clamav.net
>
>
> ------------------------------------------------------------------------------
> Protect Your Site and Customers from Malware Attacks
> Learn about various malware tactics and how to avoid them. Understand
> malware threats, the impact they can have on your business, and how you
> can protect your company and customers by using code signing.
> http://p.sf.net/sfu/oracle-sfdevnl
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

------------------------------------------------------------------------------
Protect Your Site and Customers from Malware Attacks
Learn about various malware tactics and how to avoid them. Understand 
malware threats, the impact they can have on your business, and how you 
can protect your company and customers by using code signing.
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users