Multiple errors on Snort
Anshuman Anil Deshmukh <anshuman <at> cybage.com>
2014-12-05 05:47:55 GMT
I recently upgraded my working setup of Snort from version 220.127.116.11 to version 18.104.22.168. After upgrading I am facing following issues.
I cannot update the so_rules via pulledpork. It’s even not working when if I try to dump the so_rules manually. It is picking up the weired path (same as mentioned in the thread
http://seclists.org/snort/2013/q4/126) . It is said in this thread to touch or copy. I couldn’t understand what exactly needs to be done. What is the resolution to it. I already copied the required .so files
so as to dump dynamic option to work. On which files am I supposed to do the touch?
If I try to disable the so_rule configuration within snort.conf and pulledpork.conf, it gives me error “ERROR: /etc/snort/snort.conf(373) => Too many parameters for option in Session config.”
Please suggest what should be done to resolve the issue.
Disclaimer: This electronic message and all contents contain information from Cybage Software Private Limited which may be privileged, confidential, or otherwise protected from disclosure. The information is intended to be for the addressee(s) only. If you
are not an addressee, any disclosure, copy, distribution, or use of the contents of this message is strictly prohibited. If you have received this electronic message in error please notify the sender by reply e-mail to and destroy the original message and
all copies. Cybage has taken every reasonable precaution to minimize the risk of malicious content in the mail, but is not liable for any damage you may sustain as a result of any malicious content in this e-mail. You should carry out your own malicious content
checks before opening the e-mail or attachment." www.cybage.com
Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server
from Actuate! Instantly Supercharge Your Business Reports and Dashboards
with Interactivity, Sharing, Native Excel Exports, App Integration & more
Get technology previously reserved for billion-dollar corporations, FREE
Snort-users mailing list
Snort-users <at> lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:
Please visit http://blog.snort.org to stay current on all the latest Snort news!