Snort mailing list archives
Re: PulledPork New Snort Categories
From: Justin Knox <jknox () indexzero org>
Date: Thu, 7 Mar 2013 08:22:15 -0500
Hi Tamara, My own experience with PulledPork, in that regard, has been that the category matches up to the basenames of the rule files in the archive that gets downloaded. I haven't seen that documented, but it is working for me. I'm hoping JJ will respond to clarify. Particularly if I'm wrong - someone feel free to correct me! --Justin On Thu, Mar 7, 2013 at 7:35 AM, Tamara Fisher <tammi888 () gmail com> wrote:
Hi, I'm using PulledPork for rule management and I'm wondering if the newer categories of rules can be added to the enablesid.conf and what would be the format? I installed the latest version of PulledPork but the README.CATEGORIES refers to the old categories. I'd like to enable categories of rules if possible. Tamara Fisher ------------------------------------------------------------------------------ Symantec Endpoint Protection 12 positioned as A LEADER in The Forrester Wave(TM): Endpoint Security, Q1 2013 and "remains a good choice" in the endpoint security space. For insight on selecting the right partner to tackle endpoint security challenges, access the full report. http://p.sf.net/sfu/symantec-dev2dev _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ Symantec Endpoint Protection 12 positioned as A LEADER in The Forrester Wave(TM): Endpoint Security, Q1 2013 and "remains a good choice" in the endpoint security space. For insight on selecting the right partner to tackle endpoint security challenges, access the full report. http://p.sf.net/sfu/symantec-dev2dev
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- PulledPork New Snort Categories Tamara Fisher (Mar 07)
- Re: PulledPork New Snort Categories Justin Knox (Mar 07)
- Re: PulledPork New Snort Categories Tamara Fisher (Mar 07)
- Re: PulledPork New Snort Categories Joel Esler (Mar 07)
- Re: PulledPork New Snort Categories JJC (Mar 07)
- Re: PulledPork New Snort Categories Justin Knox (Mar 07)