Re: snort configuration

[waldo kitty <wkitty42 () windstream net>]

On 2/2/2014 1:50 PM, priya pat wrote:
> Hello,
> this is cpatel,
> I am new to snort installation for security(monitoring network traffic).
> I am doing snort installation with windows 7 on my localhost.
> I already have snort rules installed on my machine and I have installed snort
> 2.9.5.6 and winpcap 4.1.2
> I need to configure my snort.config file according to those rules.
> How do I step on?

in addition to what michael wrote, you don't configure your snort to any 
specific rule set... you configure your snort how you want/need and then use the 
rules that you need... in some cases, you might want certain rules or rules 
categories (specific rules files) enabled while in other scenarios, you might 
have those categories (files) disabled and others enabled...

setting snort up is one thing... learning about the rules and what they detect 
is a whole other matter ;)

-- 
NOTE: No off-list assistance is given without prior approval.
       Please keep mailing list traffic on the list unless
       private contact is specifically requested and granted.

------------------------------------------------------------------------------
Android apps run on BlackBerry 10
Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
Now with support for Jelly Bean, Bluetooth, Mapview and more.
Get your Android app in front of a whole new audience.  Start now.
http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!