Snort.org home  
Got Source? About Snort About Sourcefire Snort FAQ
Sourcefire Network Security - the creators of Snort
Snort News Downloads Snort Docs Rules Snort Community Snort Forums Snort Training
Search Site
Search Rules
Account
email
password
not registered?
user preferences

Snort Forums Archive

Archive Home » Rules » oinkmaster, snort.. . in debian woody

Please note that the categories listed below represent an archived version of our forums pages. To view the current version and be able to post and reply to threads, please register and login here to go to the full forums pages.

[ Notice: Full Version of This Topic ]

oinkmaster, snort.. . in debian woody


Posted by pepesnort on April 21, 2005 01:00:33

Hello

I use snort from backports of debian:

ii snort-common 2.2.0-8.backpo Flexible Network Intrusion Detection System
ii snort-mysql 2.2.0-8.backpo Flexible Network Intrusion Detection System
ii snort-rules-de 2.2.0-8.backpo Flexible Network Intrusion Detection System

I downloaded oinkmaster 1.1.tar.gz:

Then I put
-oinkmaster.pl in /usr/local/bin,chmod +x oinkmaster.pl
-oinkmaster.conf in /etc

# oinkmaster -o /etc/snort/rules

Loading /etc/oinkmaster.conf
Downloading file from http://www.snort.org/dl/rules/snortrules-snapshot-2_2.tar.gz...
/usr/local/bin/oinkmaster.pl: Error: could not download file. Output from wget follows:

--10:58:56-- http://www.snort.org/dl/rules/snortrules-snapshot-2_2.tar.gz
=> `/tmp/oinkmaster.CIOxVJPSds/snortrules.tar.gz'
Resolviendo www.snort.org... hecho.
Conectando con www.snort.org[199.107.65.177]:80... conectado.
Petición HTTP enviada, esperando respuesta... 404 Not Found
10:58:56 ERROR 404: Not Found.


Oink, oink. Exiting...

tnaks

Posted by pepesnort on April 21, 2005 01:05:30

Hello then I go http://www.snort.org/pub-bin/downloads.cgi, for download and install (snortrules-snapshot-2.2_s.tar.gz), I can download but:

tar -xvzf snortrules-snapshot-2.2_s.tar.gz

gzip: stdin: not in gzip format
tar: El proceso hijo devolvió el estado 1
tar: Salida con error demorada desde errores anteriores

????????????????????????????????

tnaks

Posted by Gesp on May 05, 2005 06:57:05

First, you should prefer to use oinkmaster-1.2 and read the updated oinkmaster FAQ.

Next, you can only load _s.gz rules after subcribing to the service.

You probably have receive a 403 error answer to your http request and this is not a .gz format.
site feedback | Terms of Use | Privacy Policy | forum archives ©2008 Snort and Sourcefire are registered trademarks of Sourcefire, Inc. All rights reserved.