Snort mailing list archives
Re: pulledpork not retrieving reg rules
From: Roland RoLaNd <r_o_l_a_n_d () hotmail com>
Date: Thu, 10 Oct 2013 12:58:23 +0200
i installed snort from debian repo.i'll compile from source.thanks for the headsup Date: Thu, 10 Oct 2013 11:59:28 +0200 Subject: Re: [Snort-users] pulledpork not retrieving reg rules From: lysemose () gmail com To: r_o_l_a_n_d () hotmail com CC: snort-users () lists sourceforge net Hi Rules for Snort 2.9.2.2 are no longer available.http://blog.snort.org/2012/08/snort-2922-is-end-of-life.html regards,Lysemose On Thu, Oct 10, 2013 at 11:52 AM, Roland RoLaNd <r_o_l_a_n_d () hotmail com> wrote: All, i configured pulledpork.conf as such: black_list=/usr/local/etc/snort/rules/iplists/default.blacklistconfig_path=/etc/snort/snort.conf disablesid=/etc/snort/disablesid.confdistro=Debian-7-1enablesid=/etc/snort/enablesid.confignore=deleted.rules,experimental.rules,local.rulesIPRVersion=/usr/local/etc/snort/rules/iplists local_rules=/etc/snort/rules/local.rulesmodifysid=/etc/snort/modifysid.confpid_path=/var/run/snort_eth0.pidpid_path=/var/run/snort_eth3.pidrule_path=/etc/snort/rules/snort.rules rule_url=http://labs.snort.org/feeds/ip-filter.blf|IPBLACKLIST|openrule_url=https://www.snort.org/reg-rules/|snortrules-snapshot.tar.gz|myoinkcode sid_changelog=/var/log/sid_changes.logsid_msg=/etc/snort/sid-msg.mapsid_msg_version=1snort_control=/usr/local/bin/snort_controlsnort_path=/usr/sbin/snortsnort_version=2.9.2.2-3 sorule_path=/usr/local/lib/snort_dynamicrules/temp_path=/tmpversion=0.7.0 When i run try updating: pulledpork.pl -c /etc/snort/pulledpork.conf -T -l http://code.google.com/p/pulledpork/ _____ ____ `----,\ ) `--==\\ / PulledPork v0.7.0 - Swine Flu! `--==\\/ .-~~~~-.Y|\\_ Copyright (C) 2009-2013 JJ Cummings @_/ / 66\_ cummingsj () gmail com | \ \ _(") \ /-| ||'--' Rules give me wings! \_\ \_\\ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Checking latest MD5 for snortrules-snapshot-2922-3.tar.gz.... A 403 error occurred, please wait for the 15 minute timeout to expire before trying again or specify the -n runtime switch You may also wish to verfiy your oinkcode, tarball name, and other configuration options Error 403 when fetching https://www.snort.org/reg-rules/snortrules-snapshot-2922-3.tar.gz.md5 at /usr/local/bin/pulledpork.pl line 463 main::md5file('myoinkcode', 'snortrules-snapshot-2922-3.tar.gz', '/tmp/', 'https://www.snort.org/reg-rules/') called at /usr/local/bin/pulledpork.pl line 1847 PS: visiting https://www.snort.org/reg-rules/snortrules-snapshot-2922-3.tar.gz/myoinkcode in a browser returns the following:Snort.org Rule Pack Download Error: -------------------------- Subscription: false -------------------------- No rule pack with this filename is available to you. -------------------------- Am i using the wrong url to retrieve 30 days old rules? ------------------------------------------------------------------------------ October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register > http://pubads.g.doubleclick.net/gampad/clk?id=60134071&iu=/4140/ostg.clktrk _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register > http://pubads.g.doubleclick.net/gampad/clk?id=60134071&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- pulledpork not retrieving reg rules Roland RoLaNd (Oct 10)
- Re: pulledpork not retrieving reg rules Heine Lysemose (Oct 10)
- Re: pulledpork not retrieving reg rules Roland RoLaNd (Oct 10)
- <Possible follow-ups>
- Re: pulledpork not retrieving reg rules wkitty42 (Oct 10)
- Re: pulledpork not retrieving reg rules Heine Lysemose (Oct 10)