[Snort-sigs] SNORT version lifecycle

Hanson.Webster at ...3973... Hanson.Webster at ...3973...
Mon Oct 20 09:59:49 EDT 2014

I am running, which according to the website went EOL back in February.  So now I have to update to  It appears that the two previous versions and went EOL 6 months after they were released. So I was just assuming that most releases last 6 months?

Is there an easy procedure for keeping the SNORT versions up to date?  Even if we have to do it once a year,  that is a lot of overhead maintenance for us to perform on a system.  Is there an automated way to update SNORT or do we just download it and install it?  I originally built the snort device form source, do I also have to update the other supporting packages like epel, PCRE, libdnet, libpcap everytime?

From: Joel Esler (jesler) [mailto:jesler at ...3865...]
Sent: Monday, October 20, 2014 9:46 AM
To: Webster, Hanson
Cc: snort-sigs at lists.sourceforge.net
Subject: Re: [Snort-sigs] SNORT version lifecycle

EOL has nothing to do with “time” per say.

As is listed on the EOL page (www.snort.org/eol<http://www.snort.org/eol>), we support the latest patch version of the current major version and the latest patched version of the prior major version (So,  (The third number being the major version).  When we introduce a new version (, we support the last minor revision for 90 days, then it is EOL.

So, for instance, The next version with be, at which time, we will set (two major versions down) to 90 day EOL.  We will support until the next major version ( or whatever we are calling it) is released.

Does that help?

Joel Esler
Open Source Manager
Threat Intelligence Team Lead

On Oct 20, 2014, at 9:30 AM, Hanson.Webster at ...3973...<mailto:Hanson.Webster at ...3973...> wrote:

Looking at the EOL table it appears that SNORT versions go end of life after 6 months. 2.9.6 was valid from 1/2014 until 7/2014 and 2.9.61 was valid from 4/2014 until 10/2014.  Should I assume that will go EOL in February of 2015?

What is the procedure for updating SNORT?  Is it required to update it twice a year?

Snort Version















Hanson M. Webster | Network and Security Analyst | Salem Five Bank | 210 Essex Street, Salem MA 01970 | Tel: 978.720. 5230 | Fax: 978.498.0230 | www.salemfive.com<http://www.salemfive.com/>

This information may be confidential and/or privileged.  Use of this information by anyone other than the intended recipient is prohibited.  If you receive this message in error, please inform the sender and remove any record of this message.

Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
Snort-sigs mailing list
Snort-sigs at lists.sourceforge.net<mailto:Snort-sigs at lists.sourceforge.net>

Please visit http://blog.snort.org<http://blog.snort.org/> for the latest news about Snort!

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-sigs/attachments/20141020/63198f27/attachment.html>

More information about the Snort-sigs mailing list