Snort mailing list archives
Re: FATAL ERROR: VRT-specific-threats.rules
From: Joel Esler <jesler () sourcefire com>
Date: Sun, 22 Jan 2012 13:29:41 -0500
Jonathan, We'll take a look at the snort.conf the is distributed with the tar ball. Thanks. On Sun, Jan 22, 2012 at 12:31 PM, Jonathan S. Abrams < jonathansabrams () gmail com> wrote:
Thanks for the tip. What I find troubling about this is I had downloaded v2.9.2 from snort.org and used pulledpork to obtain the rules. That blog post states that people who work with Snort this way shouldn't have a problem. Plus, the snort.conf file included with v2.9.2 did not have the necessary chunk of code, but the example snort.conf file for v2.9.2 on the website did. On Sun, Jan 22, 2012 at 12:18 PM, Joe Gedeon <joe.gedeon () gmail com> wrote:http://blog.joelesler.net/2011/11/filedataports-error-in-snort-solved.html On Sun, Jan 22, 2012 at 11:30, Jonathan S. Abrams <jonathansabrams () gmail com> wrote:Hello, I am close to having Snort v2.9.2 working on OSX v10.4.11. I say close because I am observing the following error, which is preventing Snortfromstarting up. FATAL ERROR: /etc/snort/rules/VRT-specific-threats.rules(668) ***PortVar Lookup failed on '$FILE_DATA_PORTS'.\n Can anyone offer me guidance on resolving this error? Thanks for reading!------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
-- Joel Esler | http://blog.snort.org | http://vrt-blog.snort.org | http://blog.clamav.net Twitter: http://twitter.com/snort
------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- FATAL ERROR: VRT-specific-threats.rules Jonathan S. Abrams (Jan 22)
- Re: FATAL ERROR: VRT-specific-threats.rules Jeremy Hoel (Jan 22)
- Message not available
- Re: FATAL ERROR: VRT-specific-threats.rules Jonathan S. Abrams (Jan 22)
- Re: FATAL ERROR: VRT-specific-threats.rules Joel Esler (Jan 22)
- Re: FATAL ERROR: VRT-specific-threats.rules Jonathan S. Abrams (Jan 22)
- Re: FATAL ERROR: VRT-specific-threats.rules Jonathan S. Abrams (Jan 22)
- Re: FATAL ERROR: VRT-specific-threats.rules Joel Esler (Jan 22)