Snort mailing list archives
Re: OpenAppID Rules?
From: "Joel Esler (jesler)" <jesler () cisco com>
Date: Sat, 7 Nov 2015 16:40:24 +0000
We don't release Snort release specific versions of the Ruleset until the GA release happens. -- Joel Esler Manager, Talos Sent from my iPhone On Nov 6, 2015, at 8:49 AM, Y M <snort () outlook com<mailto:snort () outlook com>> wrote: It was only until Snort 2.9.8 Beta the AppID came out of the experimental status as per the release notes . Since Snort 2.9.8 is still not final, there are no rules for Snort 2.9.8 released. Perhaps that will change once Snort 2.9.8 becomes GA. This is pure speculation, so don't take my word for it. The engine would still work and log app stats, but you probably already know that :) YM ________________________________________ From: Turnbough, Bradley E. <bturnbough () belcan com<mailto:bturnbough () belcan com>> Sent: Friday, November 6, 2015 2:10 PM To: snort-users () lists sourceforge net<mailto:snort-users () lists sourceforge net> Subject: [Snort-users] OpenAppID Rules? I read somewhere that OpenAppId support is now included in the latest Snort release, but I also saw somewhere that openappid rules are not available from the vendor. Am I ahead of the game in wanting canned rules from a vendor, and not wanting to write my own rules? Why release the engine and no rules? Am I missing something? Thanks, Brad Turnbough Network Admin _____________________________________________________________ This e-mail transmission contains information that is confidential and may be privileged. It is intended only for the addressee(s) named above. If you receive this e-mail in error, please do not read, copy or disseminate it in any manner. If you are not the intended recipient, any disclosure, copying, distribution or use of the contents of this information is prohibited. Please reply to the message immediately by informing the sender that the message was misdirected. After replying, please erase it from your computer system. Your assistance in correcting this error is appreciated. ------------------------------------------------------------------------------ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net<mailto:Snort-users () lists sourceforge net> Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news! ------------------------------------------------------------------------------ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net<mailto:Snort-users () lists sourceforge net> Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- OpenAppID Rules? Turnbough, Bradley E. (Nov 06)
- Re: OpenAppID Rules? Y M (Nov 06)
- Re: OpenAppID Rules? Joel Esler (jesler) (Nov 07)
- Re: OpenAppID Rules? Y M (Nov 06)