Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [Emerging-Sigs] [Snort-users] Snort 2.8.6.1 EOL Reminder

From: Joel Esler <jesler () sourcefire com>
Date: Thu, 1 Dec 2011 21:49:42 -0500
There is no such thing as "Sourcefire, non-VRT"

--
Joel Esler

On Dec 1, 2011, at 9:45 PM, Jeff Kell <jeff-kell () utc edu> wrote:


On 12/1/2011 4:56 PM, Matthew Jonkman wrote:

Thanks for the good words. Both rulesets are quite good, just different focus for each, and different platforms 
supported. 


Agreed, but for those of us that aggregate our layers of defense <grin>
it would be very nice to have a ETPRO and ETPRO-noGPL just as you have
an ET and ET-noGPL set.

With the current framework, you can't easily run VRT and ETPRO
(duplication of filenames and signatures).

You can however easily run sourcefire (non-VRT) plus ET (non PRO).

Jeff
_______________________________________________
Emerging-sigs mailing list
Emerging-sigs () emergingthreats net
http://lists.emergingthreats.net/mailman/listinfo/emerging-sigs

Support Emerging Threats! Subscribe to Emerging Threats Pro http://www.emergingthreatspro.com
The ONLY place to get complete premium rulesets for Snort 2.4.0 through Current!


------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure 
contains a definitive record of customers, application performance, 
security threats, fraudulent activity, and more. Splunk takes this 
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: