Re: Snort vs Proofpoint Emerging Threats

["Joel Esler (jesler)" <jesler () cisco com>]

I am sure there are plenty of people who would object to both sides of that argument.

Some of the rules overlap, most don’t.

You have to adjust the rulesets you are using by what your network is susceptible to.

Joel


> On Oct 5, 2016, at 5:50 PM, wkitty42 () windstream net wrote:
>
> On 10/05/2016 10:36 AM, Shawn Maggard wrote:
> > We are building our pfSense box, and are trying to decide on which set of Snort
> > rules to purchase: Snort's Sourcefire VRT, Emerging Threats (from proofpoint),
> > or both.
>
> ET's rules are front line stuff for catching new critters...
>
> Talos' rules are more for maintenance and protection...
>
> FWIW: Sourcefile VRT is now known as Talos...
>
>
> -- 
>  NOTE: No off-list assistance is given without prior approval.
>        *Please keep mailing list traffic on the list* unless
>        private contact is specifically requested and granted.
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most 
> engaging tech sites, SlashDot.org! http://sdm.link/slashdot
> _______________________________________________
> Snort-sigs mailing list
> Snort-sigs () lists sourceforge net
> https://lists.sourceforge.net/lists/listinfo/snort-sigs
> http://www.snort.org
>
>
> Please visit http://blog.snort.org for the latest news about Snort!

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most 
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!