Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: RESOLVED Re: Oinkmaster can't get rules

From: Nigel Houghton <nhoughton () sourcefire com>
Date: Thu, 15 Jul 2010 08:51:37 -0400
On Thu, Jul 15, 2010 at 8:27 AM, James Lay <jlay () slave-tothe-box net> wrote:

Success!

Apparently 3 things needed to occur:

Update Crypt::SSLeay


Good practice to keep things up to date, especially where your
security software is concerned. (I'm looking at you people who aren't
running 2.8.5.3 or 2.8.6.0)


Modify oinkmaster.pl line 909 with --no-check-certificate


So now you're not checking certificate validity so...


Snag the ca-certificates package and install each cert in /etc/ssl/certs


...you wouldn't need these anymore.


While I can see Slackware's point of having the user install the certs,
eh...it was a bit of a pain to have to figure all this out ;)  Thanks for
all the help folks.


You need to make sure you have the up to date certificates installed
and don't use the "--no-check-cert" option.

-- 
Nigel Houghton
Head Mentalist
SF VRT
http://vrt-sourcefire.blogspot.com && http://labs.snort.org/

------------------------------------------------------------------------------
This SF.net email is sponsored by Sprint
What will you do first with EVO, the first 4G phone?
Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: