Snort mailing list archives
Re: Autosnort updates and expanded OS support
From: Tony Robinson <deusexmachina667 () gmail com>
Date: Wed, 14 Nov 2012 22:34:35 -0500
Hi folks, I don't know if this is considered thread necromancy... but I wanted to post a quick update to the snort mailing list in that I have scratched off item 1 of "in the works" list below -- There is now a build of autosnort to support 32 and 64-bit Debian users. As always, the code is available via the autosnort github, and there is a new blog post on the autosnort blog. Happy snorting! Regards, DA On Mon, Nov 12, 2012 at 1:33 PM, Tony Robinson <deusexmachina667 () gmail com>wrote:
Hello snort users, It has been some amount of time since my initial announcement for autosnort. I've been (somewhat?) hard at work since then, improving the initial script, and also creating additional scripts for supporting other operating systems. In case you weren't around for the first announcement a few months ago, autosnort is a shell script that will take a supported operating system and give you a fully updated, fully functional snort installation with minimal effort. So without further adieu, here are the announcements: 1. Improved automation - the script no longer downloads a static version of snort, but is able to poll snort.org for the latest stable version of snort and daq libraries and automatically download them (special thanks to Dogbert2 in snort IRC for the idea on how to do this) 2. Expanded OS support - there are now autosnort builds for CentOS 32 and 64 bit as well as Backtrack 5 r3 -- Gnome and KDE -- 32 and 64 bit. 3. Improved documentation - in the general README as well as OS-specific readmes that detail what exactly the script does to your system -- in addition to the code comments to explain EXACTLY what is going on, if you want to try your hand and modifying the script to suit your specific needs In the works: 1. A build for Debian 32 and 64-bit 2. A build for pentoo linux (pentoo.ch, announced at Defcon 20, and Derbycon 2.0 this year -- gentoo based pentesting distro) 3. A choice of web front ends 4. Barebones install option (e.g. snort, daqlibs and output to syslog for SIEM integration) Give it a try, let me know what you think. Contributions of code (or, well, anything, I suppose) will not be turned away. If you run into problems, or have any questions, please let me know. blog: http://autosnort.blogspot.com/ github: https://github.com/da667/Autosnort e-mail: deusexmachina667 () gmail com twitter: @da_667 Thanks for your time, and happy snorting! p.s. : Special thanks to Joel Esler.
-- when does reality end? when does fantasy begin?
------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Autosnort updates and expanded OS support Tony Robinson (Nov 12)
- Re: Autosnort updates and expanded OS support Tony Robinson (Nov 14)