Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Snort as IDS/IPS in mission-critical enterprisenetwork

From: Michael Holstein <michael.holstein () csuohio edu>
Date: Fri, 09 Dec 2005 14:28:48 -0500
You, too, can be replaced by a small shell script. :)


Add the -T switch to your shellscript and test *before* you HUP snort.
I was just telling the cautionary tale of interrupting snort, since it's so easy to mess up rules by inserting a blankline between or carrige return in the middle of them. 

~Mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: