Re: SnortSam Discussion was: RulePack update and End of Life of 2.8.6.0

[Russ Combs <rcombs () sourcefire com>]

On Fri, Jan 28, 2011 at 1:25 PM, NA <dustypath () comcast net> wrote:

> If I wish to install/configure Snort on a Mac laptop then I would
> configure with enable-inline and and enable-ipfw?

--enable-inline is gone.  It is no longer necessary with Snort 290 and DAQ
to custom build for inline mode.  Also, --enable-inline was a Snort
configure option.  --enable-ipfw is a DAQ configure option.

> Any comments on the legalities in a cafe environment and how to
> configure Snort to avoid crossing the line would be appreciated.
>
> Thanks,
> Bill Barr
>
>
> -------------
> > I believe he asked for a solution.
> >
> > The solution is to configure Snort to work inline, ./configure
> > --enable-inline has been around for years.
> >
> > You'll also need to take a look in the README that comes with the DAQ
> > tarball to use the appropriate configure options for inline use, so for
> > FreeBSD with ipfw for example you'll need to do ./configure
> > --enable-ipfw and then start Snort with ./snort --daq ipfw (whatever
> > else you want in here). The instructions in the README are pretty
> > comprehensive.
> >
> > --
> > Nigel Houghton
> > Head Mentalist
> > SF VRT Department of Intelligence Excellence
> > http://vrt-blog.snort.org/&&;  http://labs.snort.org/
> ------------------------------------------------------------------------------
> > Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
> > Finally, a world-class log management solution at an even better
> price-free!
> > Download using promo code Free_Logger_4_Dev2Dev. Offer expires
> > February 28th, so secure your free ArcSight Logger TODAY!
> > http://p.sf.net/sfu/arcsight-sfd2d
> > _______________________________________________
> > Snort-users mailing list
> > Snort-users () lists sourceforge net
> > Go to this URL to change user options or unsubscribe:
> > https://lists.sourceforge.net/lists/listinfo/snort-users
> > Snort-users list archive:
> > http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
>
>
> ------------------------------------------------------------------------------
> Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
> Finally, a world-class log management solution at an even better
> price-free!
> Download using promo code Free_Logger_4_Dev2Dev. Offer expires
> February 28th, so secure your free ArcSight Logger TODAY!
> http://p.sf.net/sfu/arcsight-sfd2d
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------------------------------
Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
Finally, a world-class log management solution at an even better price-free!
Download using promo code Free_Logger_4_Dev2Dev. Offer expires 
February 28th, so secure your free ArcSight Logger TODAY! 
http://p.sf.net/sfu/arcsight-sfd2d

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users