Re: Compiling with --enable-sourcefire = ???

[Russ Combs <rcombs () sourcefire com>]

--enable-sourcefire should be added to the mix because it also sets a flag
used for conditional compilation.

On Fri, Oct 7, 2011 at 3:12 PM, Eoin Miller <
eoin.miller () trojanedbinaries com> wrote:

> I know I've been told and seen you guys say just compile with
> --enable-sourcefire, but I am trying to figure all these switches out.
> In the conf file included with VRT packs and source (which should be
> the same) you see the below option telling you how to compile Snort.
> Is this below setup the default behavior now without passing these
> options explicitly?
>
> snort-2.9.1.1/etc/snort.conf:
> ======================================================================
> #     Snort build options:
> #     OPTIONS : --enable-ipv6 --enable-gre --enable-mpls
> --enable-targetbased --enable-decoder-preprocessor-rules --enable-ppm
> --enable-perfprofiling --enable-zlib --enable-active-response
> --enable-normalizer --enable-reload --enable-react --enable-flexresp3
> ======================================================================
>
> If so, then everything in --enable-sourcefire
> (--enable-perfprofiling,--enable-decoder-preprocessor-rules,--enable-ppm)
> is already enabled by default right?
>
> snort-2.9.1.1/configure:
> ======================================================================
>  --enable-sourcefire      Enable Sourcefire specific build options,
> encompasing
> --enable-perfprofiling,--enable-decoder-preprocessor-rules, --enable-ppm
> ======================================================================
>
> Just trying to make sure my packages are getting built right.
>
> -- Eoin
>
>
> ------------------------------------------------------------------------------
> All of the data generated in your IT infrastructure is seriously valuable.
> Why? It contains a definitive record of application performance, security
> threats, fraudulent activity, and more. Splunk takes this data and makes
> sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-d2dcopy2
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
> Please visit http://blog.snort.org to stay current on all the latest Snort
> news!
------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security
threats, fraudulent activity, and more. Splunk takes this data and makes
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2dcopy2

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!