Menu
▾
▴
Re: [Snort-inline-users] Snort-inline ruleset
|
From: Matthew J. <ma...@in...> - 2004-06-25 23:04:13
|
I'm not really keeping up that closely on the snort-inline side. I'm planning to deploy it in the near future though. It does seem there isn't a ruleset custom built for snort-inline. If anoyne has one, or wants to start one, I'd like to put the resources of www.bleedingsnort.com up for use. If you have a ruleset and want to maintain it there please email me off list and we'll get it setup. Matt Esler, Joel - Contractor wrote: > I did look at it. Seems like too much work when someone could possibly > just zip it up and send it to me... > > We'd like it for an example and to take a look at how the rules are > structured.. > > J > > -----Original Message----- > From: sno...@li... > [mailto:sno...@li...] On Behalf Of Rob > McMillen > Sent: Friday, June 25, 2004 4:12 PM > To: sno...@li... > Subject: Re: [Snort-inline-users] Snort-inline ruleset > > Take a look at snortconfig. This will allow you to modify the current > snort ruleset to work with snort_inline. > > http://www.shmoo.com/~bmc/software/snortconfig/ > > Rob > > On Fri, 25 Jun 2004, Esler, Joel - Contractor wrote: > > >>Date: Fri, 25 Jun 2004 14:15:53 -0400 >>From: "Esler, Joel - Contractor" <joe...@rc...> >>To: sno...@li... >>Subject: [Snort-inline-users] Snort-inline ruleset >> >>Does anyone have a preconfigured Snort-inline ruleset for a honeynet? >>It appears as if the rules included with Snort-inline are the regular >>Snort alerts.. >> >> >> >>J >> >> > > > > ------------------------------------------------------- > This SF.Net email sponsored by Black Hat Briefings & Training. > Attend Black Hat Briefings & Training, Las Vegas July 24-29 - > digital self defense, top technical experts, no vendor pitches, > unmatched networking opportunities. Visit www.blackhat.com > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > > > ------------------------------------------------------- > This SF.Net email sponsored by Black Hat Briefings & Training. > Attend Black Hat Briefings & Training, Las Vegas July 24-29 - > digital self defense, top technical experts, no vendor pitches, > unmatched networking opportunities. Visit www.blackhat.com > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users -- -------------------------------------------- Matthew Jonkman, CISSP Senior Security Engineer Infotex 765-429-0398 Direct Anytime 765-448-6847 Office 866-679-5177 24x7 NOC my.infotex.com www.offsitefilter.com -------------------------------------------- NOTICE: The information contained in this email is confidential and intended solely for the intended recipient. Any use, distribution, transmittal or retransmittal of information contained in this email by persons who are not intended recipients may be a violation of law and is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies. |
