Snort mailing list archives
Re: Sample snort.conf not updated?
From: Joel Esler <jesler () sourcefire com>
Date: Wed, 23 Oct 2013 13:38:54 -0400
They certainly did, and that’s my fault. I just pushed them. Sorry about that. -- Joel Esler AEGIS Intelligence Lead OpenSource Community Manager Vulnerability Research Team, Sourcefire On Oct 23, 2013, at 12:35 PM, Stark, Vernon L. <Vernon.Stark () jhuapl edu> wrote:
Did the updates to the sample configurations at http://www.snort.org/vrt/snort-conf-configurations/ get overlooked? I don’t see the new ports (1533 and 8082) in the configuration file for 2.9.4.6. Vern From: noreply+feedproxy () google com [mailto:noreply+feedproxy () google com] On Behalf Of Snort.org Blog Sent: Wednesday, October 23, 2013 12:06 PM To: Stark, Vernon L. Subject: Snort Snort Sourcefire VRT Certified Snort Rules Update for 10/22/2013 Posted: 22 Oct 2013 10:54 AM PDT Just released: Sourcefire VRT Certified Snort Rules Update for 10/22/2013 We welcome the introduction of the newest rule release for today from the VRT. In this release we introduced 45 new rules and made modifications to 66 additional rules. There were two changes made to the snort.conf in this release: The following ports were added to HTTP_PORTS, http_inspect ports, and Stream5's tcp (both) sections: 1533 8082 The Snort.confs on the example page have been updated: http://www.snort.org/vrt/snort-conf-configurations/ The VRT would like to thank the following individuals for their contributions, their rules are included in the Community Ruleset: Avery Tarasov: 28255 28285 28293 28294 28295 28296 28297 In VRT's rule release: The Sourcefire VRT has added and modified multiple rules in the app-detect, blacklist, browser-ie, browser-other, browser-plugins, exploit-kit, file-java, file-multimedia, file-other, file-pdf, indicator-compromise, malware-backdoor, malware-cnc, os-windows, protocol-icmp, protocol-tftp, pua-adware and server-webapp rule sets to provide coverage for emerging threats from these technologies. In order to subscribe now to the VRT's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at http://www.snort.org/store. Make sure and stay up to date to catch the most emerging threats! <~WRD000.jpg><~WRD000.jpg><~WRD000.jpg> <image001.jpg> You are subscribed to email updates from Snort.org Blog To stop receiving these emails, you may unsubscribe now. Email delivery powered by Google Google Inc., 20 West Kinzie, Chicago IL USA 60610 ------------------------------------------------------------------------------ October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register > http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register > http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Sample snort.conf not updated? Stark, Vernon L. (Oct 23)
- Re: Sample snort.conf not updated? Joel Esler (Oct 23)