[Snort-users] HTTP_PORTS and http_inspect

Duane Howard duane.security at ...11827...
Mon Aug 4 13:25:21 EDT 2014


Pretty sure this has been asked, but the only reference I've found was from
2011... (http://seclists.org/snort/2011/q3/512)

Has any progress been made toward not needing to specify the HTTP_PORTS
both for rules and for the http_inspect preprocessor? I'd love to define
this in only one place to ensure both are kept in sync.

Thanks,
Duane
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140804/ea38775b/attachment.html>


More information about the Snort-users mailing list