[Snort-users] Latest rule update
larc at ...1187...
Tue Mar 5 03:34:07 EST 2002
>According to User BALGAA System Engineer:
>>How can I to update snort-stable rule sets to latest rule sets?
>tar -zxvf snortrules.tar.gz
>cp rules/* /etc/snort/rules # (or wherever your rules exist)
>snortrules.tar.gz is updated every 30 minutes from CVS. Downloading
>this every 30 minutes IS a bit much. We usually make changes on a
>If you are looking for a regular update as to what changes are being
>made with the signatures, I would subscribe to the snort-cvs so you
>get up to the moment commit messages.
>Snort-users mailing list
>Snort-users at lists.sourceforge.net
>Go to this URL to change user options or unsubscribe:
>Snort-users list archive:
I think that it would be better if there was a file like
'snortrules.md5' on the snort website, with the latest checksum of the
Then my script has just to compare the checksum and not download the
hole tar.gz file to find out that there wasn't anything changed.
More information about the Snort-users