Snort mailing list archives
Re: Oinkmaster can't get rules
From: Alejandro Cabrera Obed <aco1967 () gmail com>
Date: Tue, 13 Jul 2010 11:31:47 -0300
Now I get this error message when downloading the rules with oinkmaster.pl: Loading Perl modules. Downloading file from http://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2853.tar.gz... Proxy must be specified as absolute URI; '10.4.1.10:8080' is not at c:\oinkmaster-2.0\oinkmaster.pl line 936 What can I do ??? My HTTP_proxy variable is an environment variable set up in Windows... Special thanks 2010/7/12 Joel Esler <jesler () sourcefire com>:
The --no-check-certificate problem is a result of having old CA Certificates on your box. Please read the snort-users archive, like this: http://marc.info/?l=snort-users&m=127791856110280&w=2 Joel On Jul 12, 2010, at 9:45 PM, Alejandro Cabrera Obed wrote:In my Windows I put these two environment variables: HTTP_proxy = http://10.10.2.1 HTTPS_proxy = https://10.10.12.1 (and later http://10.10.12.1) But I continue receiveing the error: oinkmaster.pl: Error: could not download from http://www.snort.org/pub-bin/oinkmaster.cgi /*my_oinkcode*/snortrules-snapshot-2853.tar.gz: 500 Can't connect to s3.amazonaws.com:443 (Bad hostname 's3.amazonaws.com') If I download the rules from my web browser I succeed !!! Any idea ??? Thanks again. 2010/7/12 James Lay <jlay () slave-tothe-box net>:From: Fábio Ferrão <ferrao04 () gmail com> Date: Thu, 8 Jul 2010 10:07:33 -0300 To: Snort <snort-users () lists sourceforge net> Subject: [Snort-users] Oinkmaster can't get rules <snip> [prompt]# /usr/local/bin/oinkmaster -o /usr/local/snort/rules/rules > /home/suporte/oinkmaster.update Loading /usr/local/etc/oinkmaster.conf Downloading file from http://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2853.tar.gz... /usr/local/bin/oinkmaster: Error: could not download from http://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2853.tar.gz. Output from wget follows: http://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2853.tar.gzResolving www.snort.org... 68.177.102.20 Connecting to www.snort.org <http://www.snort.org> |68.177.102.20|:80... connected. HTTP request sent, awaiting response... 403 Forbidden 2010-07-06 13:18:43 ERROR 403: Forbidden. <snip> I am receiving exactly the same thing, even though I’ve modified my my oinkmaster.pl to reflect the —no-check-certificate. It seems like sometime a redirect doesn’t fire since I get to 68.177.102.20, and instead of the 302 redirect, simply a 403 and dumped. Anyone else besides myself and the OP seeing this? Thanks. James ------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users-- Alejandro Cabrera Obed aco1967 () gmail com www.alejandrocabrera.com.ar ------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
-- Alejandro Cabrera Obed aco1967 () gmail com www.alejandrocabrera.com.ar ------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Oinkmaster can't get rules Alejandro Cabrera Obed (Jul 07)
- Re: Oinkmaster can't get rules Joel Esler (Jul 07)
- Re: Oinkmaster can't get rules Alejandro Cabrera Obed (Jul 07)
- Re: Oinkmaster can't get rules dan (ddp) (Jul 07)
- <Possible follow-ups>
- Oinkmaster can't get rules Fábio Ferrão (Jul 08)
- Re: Oinkmaster can't get rules Joel Esler (Jul 08)
- Re: Oinkmaster can't get rules James Lay (Jul 12)
- Re: Oinkmaster can't get rules Alejandro Cabrera Obed (Jul 12)
- Re: Oinkmaster can't get rules Joel Esler (Jul 12)
- Re: Oinkmaster can't get rules Alejandro Cabrera Obed (Jul 13)
- Re: Oinkmaster can't get rules Joel Esler (Jul 13)
- Re: Oinkmaster can't get rules James Lay (Jul 13)
- Re: Oinkmaster can't get rules Joel Esler (Jul 13)
- Re: Oinkmaster can't get rules James Lay (Jul 14)
- Re: Oinkmaster can't get rules Joel Esler (Jul 14)
- Re: Oinkmaster can't get rules JJC (Jul 14)
- Re: Oinkmaster can't get rules Jefferson, Shawn (Jul 19)
- oinkmaster vs pulledpork was (Oinkmaster can't get rules) Russell Fulton (Jul 19)
- Re: oinkmaster vs pulledpork was (Oinkmaster can't get rules) JJC (Jul 19)
- Re: oinkmaster vs pulledpork was (Oinkmaster can't get rules) Mike Lococo (Jul 19)
- Re: Oinkmaster can't get rules Joel Esler (Jul 07)