Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Snort dont understand pf (openbsd) format

From: "M. Shirk" <shirkdog_list () hotmail com>
Date: Wed, 01 Dec 2004 12:03:48 -0500
I'm not sure which version of OpenBSD changed the format, but there is a new and an old format in OpenBSD 3.5's if_pflog.h. Snort's handling code matches the old format. 

Looks like snort needs an update to support modern pf formats.



When I get home tonight, I can test with my OpenBSD Server(3.6 or current).
If someone else has already done this, please stop me before I start :-)
Also, I wonder if this has come up before on OpenBSD as far as the PORT of Snort that comes with the Releases of OpenBSD. 

Shirkdog
http://www.shirkdog.us

_________________________________________________________________
DonÂ’t just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ 



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ 
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: