[MacPorts] #46320: net/snort: missing rules files from default snort.conf
MacPorts
noreply at macports.org
Sat Dec 27 11:03:48 PST 2014
#46320: net/snort: missing rules files from default snort.conf
------------------------+-----------------------
Reporter: pixilla@… | Owner: jul_bsd@…
Type: defect | Status: new
Priority: Normal | Milestone:
Component: ports | Version: 2.3.3
Resolution: | Keywords:
Port: snort |
------------------------+-----------------------
Comment (by jul_bsd@…):
Hello Pixilla,
in the 'port notes' is said:
"Please download rules from https://www.snort.org/snort-rules/#rules
either manually or with oinkmaster."
oinkmaster has not been commited for now (Ticket #42859) so need to
download it manually or do that with the rules.
Maybe the above line need more highlight.
Also the link changed. it is https://www.snort.org/downloads/#rule-
downloads now
Problem is snort has 3 sets
- unregistered user/community rules
- registered user
- paid user
the first one is pretty outdated but is still kept by debian package for
the sake of usability.
But as it's a security software, in a same way than an AV, it's pretty
useless with outdated rules.
I would prefer to leave user make its choice and if possible use
registered set.
In Oinkmaster port, I pinpoint on other sets like EmergingThreats or
BleedingSnort
Also for this rules file, an alternative would be just touching file in
post-activate, but need also white and black_list.rules
and change path.
tentative patch joined
--
Ticket URL: <https://trac.macports.org/ticket/46320#comment:1>
MacPorts <https://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list