Porn.rules dont work?

["FRANCIS PROVENCHER" <francis.provencher () msp gouv qc ca>]

I all,

I'v look around and read multiples thread's about the porn.rules.

I run a box with snort ( Version 2.6.1.5 (Build 59)  FreeBSD).

I uncomment it on the snort.conf 
...
include $RULE_PATH/nntp.rules
include $RULE_PATH/other-ids.rules
include $RULE_PATH/web-attacks.rules
include $RULE_PATH/backdoor.rules
include $RULE_PATH/shellcode.rules
include $RULE_PATH/policy.rules
include $RULE_PATH/porn.rules
....

I look on the $RULE_PATH/ to see if the rules is here;

Porn.rules exist.

I browse the web via google with a proxy set to the port 8080, i search for upskirt, XXX, Free PORN and lot's of 
expression list on the rules but i never received alert on my BASE Console.

I have to change something in the rule (like $HTTP_PORTS) to work?

Some one have an idea.





Francis Provencher
Ministère de la Sécurité publique du Québec
Direction des technologies de l'information
Division de la sécurité informatique
Tél: 1 418 646-3258
Courriel:   Francis.provencher () Msp gouv qc ca
 
CEH - Certified Ethical Hackers
SSCP - System Security Certified Practitionner
Sec+ - Security +

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users