[Snort-users] MySQL support for Snort 2.9.4

waldo kitty wkitty42 at ...14940...
Wed Dec 12 09:14:05 EST 2012


On 12/11/2012 16:47, Kaya Saman wrote:
> Basically Snort should just listen to all traffic and report for
> anything hinky - running in IDS mode.

it has to get traffic first... it might not be seeing any for some (deeper) 
reason (then just looking at a wire and a NIC) ;)

> I'm wondering if I should pull the Emerging Threats rules in again and
> use those as they worked before?

it is not the rules... it is the snort... there's no real difference between the 
VRT and ET rules sets ;)





More information about the Snort-users mailing list