Snort mailing list archives

Auditing Snort Rules (Signatures)

From: D W <esecure1 () yahoo com>
Date: Mon, 10 Jun 2002 12:50:19 -0700 (PDT)

I am developing an audit plan for a distributed IDS
(snort, ACID, etc) and would like to know if there is
a way to test if the snort rules (signatures) on the
probe being audited are current (snort.org being the
reference point). 

I read through the FAQ and didn't see anything obvious
that would help in this situation. 

Any help would be GREATLY appreciated. Thanks!!

__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com

_______________________________________________________________

Don't miss the 2002 Sprint PCS Application Developer's Conference
August 25-28 in Las Vegas - http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Auditing Snort Rules (Signatures) D W (Jun 10)