Snort mailing list archives

Snort Upgrade

From: "N. V. R. K. RAJU" <nvrkraju4 () gmail com>
Date: Fri, 13 Jan 2017 13:52:27 -0800

Hi Snort Team,



We are currently running snort version 2.9.6.2
<https://urldefense.proofpoint.com/v2/url?u=http-3A__2.9.6.2&d=DwQFAg&c=_hRq4mqlUmqpqlyQ5hkoDXIVh6I6pxfkkNxQuL0p-Z0&r=WqcySmX1r9LmeeP2OWOSKKxi3Y6_Rx56gkkvS9cRlVLj5aRP5-Mt1Q7OCCGB4M7X&m=kWT26Rx6vV1vlJxO3zOXHjggAVpg-PQuVmEhNwz5sUo&s=YMq9GsASdVZRkVpT7oktQZ3wUrqRxxbnlCjgFBvUkxc&e=>
in our enterprise. I read in snort blog about the 2.9.6.2
<https://urldefense.proofpoint.com/v2/url?u=http-3A__2.9.6.2&d=DwQFAg&c=_hRq4mqlUmqpqlyQ5hkoDXIVh6I6pxfkkNxQuL0p-Z0&r=WqcySmX1r9LmeeP2OWOSKKxi3Y6_Rx56gkkvS9cRlVLj5aRP5-Mt1Q7OCCGB4M7X&m=kWT26Rx6vV1vlJxO3zOXHjggAVpg-PQuVmEhNwz5sUo&s=YMq9GsASdVZRkVpT7oktQZ3wUrqRxxbnlCjgFBvUkxc&e=>
end of life.



How can we upgrade the snort to latest version?

What version is recommended?

What is the upgrade process?

Should we install new version from scratch? Is there way to retain the
current configuration during the new version upgrade?



# snort -V



   ,,_     -*> Snort! <*-

  o"  )~   Version 2.9.6.1
<https://urldefense.proofpoint.com/v2/url?u=http-3A__2.9.6.1&d=DwQFAg&c=_hRq4mqlUmqpqlyQ5hkoDXIVh6I6pxfkkNxQuL0p-Z0&r=WqcySmX1r9LmeeP2OWOSKKxi3Y6_Rx56gkkvS9cRlVLj5aRP5-Mt1Q7OCCGB4M7X&m=kWT26Rx6vV1vlJxO3zOXHjggAVpg-PQuVmEhNwz5sUo&s=0p-vmt5hs0Xxqvy6BT4iWz-uhW5nwqn0ag0o4G0ywvc&e=>
GRE (Build 56)

   ''''    By Martin Roesch & The Snort Team: http://www.snort.org/snort/
snort-team
<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.snort.org_snort_snort-2Dteam&d=DwMFAg&c=_hRq4mqlUmqpqlyQ5hkoDXIVh6I6pxfkkNxQuL0p-Z0&r=WqcySmX1r9LmeeP2OWOSKKxi3Y6_Rx56gkkvS9cRlVLj5aRP5-Mt1Q7OCCGB4M7X&m=kWT26Rx6vV1vlJxO3zOXHjggAVpg-PQuVmEhNwz5sUo&s=S9ovyJWAnr2_RH07o2kdDQBEkUSeAYuQrT0RvewMe10&e=>

           Copyright (C) 2014 Cisco and/or its affiliates. All rights
reserved.

           Copyright (C) 1998-2013 Sourcefire, Inc., et al.

           Using libpcap version 1.4.0

           Using PCRE version: 7.8 2008-09-05

           Using ZLIB version: 1.2.3



And there is pulledpork package being in use. However, unable to identify
the latest rules update.





Regards,

Raju

-- 
Regards,
Raju

------------------------------------------------------------------------------
Developer Access Program for Intel Xeon Phi Processors
Access to Intel Xeon Phi processor-based developer platforms.
With one year of Intel Parallel Studio XE.
Training and support from Colfax.
Order your platform today. http://sdm.link/xeonphi

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Current thread:

Snort Upgrade N. V. R. K. RAJU (Jan 13)
- <Possible follow-ups>
- Re: Snort Upgrade N. V. R. K. RAJU (Jan 16)
- Re: Snort Upgrade Neelakantam, Raju (Jan 16)
- Re: Snort Upgrade Neelakantam, Raju (Jan 16)
  - Re: Snort Upgrade James Lay (Jan 16)