Re: Persistent problems with rule updates for Registerd Users

["Michael Steele" <michaels () winsnort com>]

I agree, it doesn't help. But in all reality it is someone's job to make
sure the end users are getting current configuration files. I think the
rules and configuration files are key components, and If the end users have
to constantly second guess the validity of these files that are being
released, that's a problem.

 

This issue has been brought up multiple times over a long period of time,
and each time the problem is supposed to have been corrected. Someone takes
the time to add a MD5 checksum to the file. I don't see what the possible
problem could be to include up-to-date file in the packages.

 

I have a complete set of configuration files in my snort executable, I have
a complete set of configuration files in the rules tarball, and yet I'm
still required to download yet another snort.conf in order to get the
current one.

The problem of configuration files and rule distribution needs to be
addressed, and fixed.

 

Best regards,

Michael...

 

From: Russ Combs [mailto:rcombs () sourcefire com] 
Sent: Thursday, January 03, 2013 8:37 AM
To: Michael Steele
Cc: snort-users () lists sourceforge net
Subject: Re: [Snort-users] Persistent problems with rule updates for
Registerd Users

 

 

On Wed, Jan 2, 2013 at 9:23 PM, Michael Steele <michaels () winsnort com
<mailto:michaels () winsnort com> > wrote:

I just downloaded the latest rule set for the 'Registered Users' titled
snortrules-snapshot-2940.tar.gz <https://www.snort.org/downloads/2117> . It
STILL contains an OLD snort.conf. It's missing port assignments, and it
still includes the 'output database' option.

 

This was a previous problem and there were assurances it was taken care of.
Looks like someone is not doing their job?

 

I get that you are perhaps a little frustrated, but I don't get how that
last statement helps your cause.  Just sayin'. 

 

Can someone pull the Registered Users tarball
(snortrules-snapshot-2940.tar.gz <https://www.snort.org/downloads/2117> )
and verify all the rules and configuration files are up-to-date?

 

Best regards,

Michael...

 


----------------------------------------------------------------------------
--
Master Visual Studio, SharePoint, SQL, ASP.NET <http://ASP.NET> , C# 2012,
HTML5, CSS,
MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current
with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft
MVPs and experts. ON SALE this month only -- learn more at:
http://p.sf.net/sfu/learnmore_122712
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net <mailto:Snort-users () lists sourceforge net>

Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort
news!

 

------------------------------------------------------------------------------
Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS,
MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current
with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft
MVPs and experts. ON SALE this month only -- learn more at:
http://p.sf.net/sfu/learnmore_122712

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!