[Snort-users] MySQL support for Snort 2.9.4
wkitty42 at ...14940...
Wed Dec 12 09:14:05 EST 2012
On 12/11/2012 16:47, Kaya Saman wrote:
> Basically Snort should just listen to all traffic and report for
> anything hinky - running in IDS mode.
it has to get traffic first... it might not be seeing any for some (deeper)
reason (then just looking at a wire and a NIC) ;)
> I'm wondering if I should pull the Emerging Threats rules in again and
> use those as they worked before?
it is not the rules... it is the snort... there's no real difference between the
VRT and ET rules sets ;)
More information about the Snort-users