Friday, July 18, 2014

Upgrading Snort to 2.9.6.2, the ruleset.

In the past, when a new version of Snort was released, Registered Rule Users had to wait for 30 days before they could upgrade to the newest version of Snort in order to receive the rule feed.

No longer.

As I mentioned in a previous post on the subject, we now are pushing updates to the Registered and Subscriber rulesets at the same time.  If you navigate to the Snort.org downloads page, you'll notice that you can immediately download the Registered ruleset for Snort version 2.9.6.2.

This means that people can now stay current with their version of Snort, no more waiting to upgrade and no more delays in getting the latest features!

5 comments:

  1. Hi there,

    Congrats on releasing 2.9.6.2.

    Two comments:
    1) It is very hard to find the configuration file templates in the new snort.org. A search for snort.conf returns zero results!
    2) https://www.snort.org/configurations (where the templates reside) does not have a file for 2.9.6.2 yet.

    Thank you!

    ReplyDelete
  2. Thanks for the quick response!

    ReplyDelete
  3. Hi,

    since last week I can't download the new 2.6.2 Ruleset with PulledPork. Is there a new URL to download the Rules?

    Checking latest MD5 for snortrules-snapshot-2962.tar.gz....
    Error 501 when fetching https://www.snort.org/reg-rules/snortrules-snapshot-2962.tar.gz.md5 at ./pulledpork.pl line 463

    ReplyDelete
    Replies
    1. I suggest that you address your question to the appropriate Snort mailing list found here:

      https://www.snort.org/community

      Delete