[Snort-users] Snort.conf updates have been posted

Joel Esler jesler at ...1935...
Wed Oct 10 09:27:35 EDT 2012


1. This is for all currently shipping versions.  I updated all the snort.confs at the link below.
2.  I'm unaware if ET has coverage for the vulnerabilities that we require for that port.

--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire

On Oct 10, 2012, at 2:55 AM, Amm Snort <ammdispose-snort at ...131...> wrote:

> Just a minor query.
> 1) Is this applicable just for new beta version or it works for 2.9.3.1 too?
> 2) Will this work if I am using ET rules?
> 
> Thanks and regards,
> 
> Amm.
> 
> From: Joel Esler <jesler at ...1935...>
> To: "snort-users at lists.sourceforge.net list" <snort-users at ...3471...ge.net>; snort-sigs <snort-sigs at lists.sourceforge.net> 
> Sent: Wednesday, 10 October 2012 1:16 AM
> Subject: [Snort-users] Snort.conf updates have been posted
> 
> http://blog.snort.org/2012/10/sourcefire-vrt-certified-snort-rules_9.html
> 
> The following changes were made to the snort.conf:
> 
> portvar HTTP_PORTS [80,81,311,591,593,901,1220,1414,1741,1830,2301,2381,2809,3128,3702,4343,4848,5250,7001,7145,7510,7777,7779,8000,8008,8014,8028,8080,8088,8090,8118,8123,8180,8181,8243,8280,8800,8888,8899,9000,9080,9090,9091,9443,9999,11371,55555] 
> 
> now reads:
> 
> portvar HTTP_PORTS [80,81,311,591,593,901,1220,1414,1741,1830,2301,2381,2809,3128,3702,4343,4848,5250,7001,7145,7510,7777,7779,8000,8008,8014,8028,8080,8088,8090,8118,8123,8180,8181,8243,8280,8800,8888,8899,9000,9060,9080,9090,9091,9443,9999,11371,55555] 
> 
> (Addition of 9060)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20121010/4ea38265/attachment.html>


More information about the Snort-users mailing list