[Snort-users] Snort Blog: Snort 126.96.36.199 has been released
snort_list at fishnet.co.uk
Fri Oct 12 04:52:45 EDT 2018
I've just build from the source RPM on a centos 6 system that I
previously built 188.8.131.52 using the command:
rpmbuild --rebuild snort-2.9.12-1.src.rpm
The rpms created are:
Is this version with openappid a drop in replacement for the previous one ?
Will any reconfiguring need doing?
On 11/10/2018 20:55, Joel Esler (jesler) via Snort-users wrote:
>> Snort 184.108.40.206 has been released
>> Please join us as we welcome SNORTⓇ 220.127.116.11 to the family!
>> Some release notes on this latest version:
>> New Additions
>> * Parsing HTTP CONNECT to extract the tunnel IP and port information.
>> * Alerting and dechunking for chunked encoding in HTTP1.0 request
>> and response.
>> * Fixed an issue where, if we have a junk line before HTTP response
>> header, the header was wrongly parsed.
>> * Fixed GZIP evasions where an HTTP response with
>> content-encoding:gzip contains a body that has a GZIP-related
>> * Fixed an issue in certain scenarios where a BitTorrent pattern is
>> seen only on the third packet of the session, causing us to miss
>> our client detection.
>> * SMB improvements for file detection and processing.
>> We'd like to thank the following members of the Snort community for
>> reporting issues and submitting code to the project:
>> * Elof
>> * Anuj Patel
>> * Markus
>> * David Binderman
>> * Stephan Zeisbarg
>> As always, we welcome feedback and community participation in Snort on
>> the snort-users mailing list <https://snort.org/community>.
> Snort-users mailing list
> Snort-users at lists.snort.org
> Go to this URL to change user options or unsubscribe:
> To unsubscribe, send an email to:
> snort-users-leave at lists.snort.org
> Please visit http://blog.snort.org to stay current on all the latest Snort news!
> Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette
More information about the Snort-users