Menu
▾
▴
Re: [Snort-inline-users] Announcing Snort_inline 2.4.3RC2 a.k.a "The Wedding Release"
|
From: Adrian S. <soo...@gm...> - 2005-11-07 19:51:38
|
Victor, You mentioned that in this release, stream4inline was re-written. Did it resolve this bug I found more than three months ago? I think it had to do with out-of-order packets? Could you explain to me what the old stream4inline did, and how the new stream4inline resolves a few issues? http://sourceforge.net/mailarchive/message.php?msg_id=3D12489363 I'm excited to give it a beating and see if it works. The multiple copies of Snort seems to be really cool! I could use a load-balancing iptables module and tripple the throughput on my IPS on a 4-cpu box, that's cool. -Adrian On 11/5/05, Victor Julien <vi...@nk...> wrote: > Hi everyone! > > Today is the day Will is getting married with his bride Lindsay. Thats > why todays release is dubbed "The Wedding Release". Before i tell you > guys about the release i want to wish William and Lindsay all the best > together! Congratulations and have fun on your honeymoon! > > Ok, back to Snort_inline. The jumping in version from 2.3.0RC1 to > 2.4.3RC2 makes clear that the last couple of months both Will and I have > been very busy with mostly real-life stuff like work, study, his > marriage, etc. We hope to be able to update Snort_inline much more and > faster in the future. > > Finally we are able to present you a new version, with the great help of > Nick Rogness (FreeBSD support), Dave Remien (netfilter netlink queue > support) and Ricardo Patino (debugging stream4inline). > > So whats new in this release: > - rewritten stream4inline support. > - netfilter netlink queue support, supporting multiple instances of > snort_inline on Linux 2.6.14+. Written by Dave Remien. > - bait and switch preprocessor allowing to redirect attackers to another > ipaddress (currently Linux only). > - updated clamav preprocessor. > - snort_inline manual page. Written by Nick Rogness. > - switch from libnet to libdnet: no more libnet 1.0.2a :-) > > Downloading, compiling and installing: > > NOTE: you need libdnet to compile Snort_inline now! > > - You first need to download Snort 2.4.3: > http://www.snort.org/dl/current/snort-2.4.3.tar.gz > - Then download the patch: > http://sourceforge.net/tracker/download.php?group_id=3D78497&atid=3D55346= 9&file_id=3D155116&aid=3D1349079 > - check its md5 checksum: 0215e3c71f6dd824db8b08fda6bf7b79 > - unzip the patchfile: gunzip snort_inline-2.4.3RC2.diff.gz > - Extract the snort archive and apply the patch like this: patch -p0 < > /path/to/snort_inline-2.4.3RC2.diff > - Enter the directory snort-2.4.3 and execute the 'autojunk.sh' script. > - run configure, make, make install > - done! > > Please give this release some serious beating and report all problems to > the list. > > Regards, > Victor > > > ------------------------------------------------------- > SF.Net email is sponsored by: > Tame your development challenges with Apache's Geronimo App Server. Downl= oad > it for free - -and be entered to win a 42" plasma tv or your very own > Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > |
