Snort 2.8.5.2 no longer receives rule updates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
snort (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
The version of Snort slated for release with 11.10 is deprecated by its developers and should be updated to a current version. Snort 2.8.5.2 is slated for release with Onieric, but Snort 2.9.1.1 is current. Although in many projects this notation would represent a small version bump, in the Snort project it represents a significant amount of development work, and more importantly, compatibility breaks in the supported syntax for rules.
Snort 2.8.5.2 was released in almost 2 years ago in December of 2009 [1], and was EOL'ed at least a year ago by October 2010 [2]. It's no longer possible to download rules targeted toward the 2.8.5 series from Snort.org [3]. Additionally, many new features are available in the 2.9.1 series, including improvements in preprocessors that handle web, voip, and email traffic [4]. While it's possible to download 2.8.5-compatible rules from the Emerging Threats project, Ubuntu should track the current release of Snort with each new release of Ubuntu as it does with other projects.
[1] http://
[2] http://
[3] http://
[4] http://
Note: 2.9.0.1 is available in Debian experimental.