snort 2.9.2.2-3 source package in Ubuntu
Changelog
snort (2.9.2.2-3) unstable; urgency=medium
[ Upload target towards Wheezy fixing some important bugs
and substantially improving the information provided on the
packages to clarify user expectations ]
* Acknowledge previous NMU
* debian/patches/config: Update the patch to:
- use absolute paths instead of relative paths to point to
the white list and black list used by the reputation
pre-processor.
- disable the reputation as we do not ship any white/black lists
by default (which causes it to fail at startup) and also
because this preprocessor is experimental.
Both changes fix the bug that prevented the package from being
configured due to errors when starting up Snort with the
default configuration (Closes: #677810)
- Add a comment to /etc/snort/snort.conf documenting for users
reading the file that preinstalled rules are surely out of date.
* debian/patches/config_disabled_rules: Comment out shellcode rules as these
have a huge impact in performance unless properly tuned.
* debian/patches/rules: Fix the definition of many SIP rules (defined
as 'alert ip any any'. These were generating a lot of false positives
in environment were enabled. Regardless of the change comment out SIP
rules since they are outdate can generate many false alarms unless
properly defined. (Closes: #626596, #680303).
* debian/control: Adjust description of snort-rules-default to indicate
users that the ruleset provided should not be considered up-to-date.
Encourage users to obtain additional/upgraded rules elsewhere.
* debian/snort-rules-default.README.Debian: Include more information to
potential users on the issues related to the default ruleset provided
(and why it is out of date) as well as pointers as to where obtain
additional rulesets. Some of this information is also in the NEWS file
but is easy to miss to new users.
-- Javier Fernández-Sanguino Peña <email address hidden> Tue, 07 Aug 2012 23:53:24 +0200
Upload details
- Uploaded by:
- Javier Fernández-Sanguino
- Uploaded to:
- Sid
- Original maintainer:
- Javier Fernández-Sanguino
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| snort_2.9.2.2-3.dsc | 1.7 KiB | 9464c4d13a925a71825ffe617135b9a196e279e2f131f973569348252bd3b040 |
| snort_2.9.2.2.orig.tar.gz | 6.2 MiB | 63f4eeee24d79e4a4e4b573e085d0d2fd78fcf3b7ea730c37eab7b47fcd9b954 |
| snort_2.9.2.2-3.debian.tar.gz | 1.5 MiB | e7e6b44659d09379f7e68b7f965b3eb1d22b75c3da9330f6af510dd8b60b262b |
Available diffs
- diff from 2.9.2.2-2.1 to 2.9.2.2-3 (6.8 KiB)
No changes file available.
Binary packages built by this source
- snort: flexible Network Intrusion Detection System
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules-based
logging and can perform content searching/matching in addition to
detecting a variety of other attacks and probes, such as buffer
overflows, stealth port scans, CGI attacks, SMB probes, and much more.
Snort has a real-time alerting capability, with alerts being sent to
syslog, a separate "alert" file, or even to a Windows computer via Samba.
.
This package provides the plain-vanilla version of Snort.
- snort-common: flexible Network Intrusion Detection System - common files
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules-based
logging and can perform content searching/matching in addition to
detecting a variety of other attacks and probes, such as buffer
overflows, stealth port scans, CGI attacks, SMB probes, and much more.
Snort has a real-time alerting capability, with alerts being sent to
syslog, a separate "alert" file, or even to a Windows computer via Samba.
.
This is a common package which holds cron jobs, tools, and config files
used by all the different package flavors.
- snort-common-libraries: No summary available for snort-common-libraries in ubuntu raring.
No description available for snort-common-
libraries in ubuntu raring.
- snort-doc: No summary available for snort-doc in ubuntu saucy.
No description available for snort-doc in ubuntu saucy.
- snort-mysql: No summary available for snort-mysql in ubuntu raring.
No description available for snort-mysql in ubuntu raring.
- snort-pgsql: No summary available for snort-pgsql in ubuntu raring.
No description available for snort-pgsql in ubuntu raring.
- snort-rules-default: No summary available for snort-rules-default in ubuntu raring.
No description available for snort-rules-default in ubuntu raring.
