snort-2.9.5.5-2.mga4.i586.rpm


Advertisement

Description

snort - An Intrusion Detection System (IDS)

Distribution: Mageia 4.1
Repository: Mageia Core i586
Package name: snort
Package version: 2.9.5.5
Package release: 2.mga4
Package architecture: i586
Package type: rpm
Installed size: 5.72 MB
Download size: 2.26 MB
Official Mirror: distrib-coffee.ipsl.jussieu.fr
Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a separate "alert" file, or as a WinPopup message via Samba's smbclient This rpm is different from previous rpms and while it will not clobber your current snort file, you will need to modify it. There are 9 different packages available All of them require the base snort rpm. Additionally, you will need to chose a binary to install. /usr/sbin/snort should end up being a symlink to a binary in one of the following configurations. We use update-alternatives for this. Here are the different packages along with their priorities. plain(10) plain+flexresp(11) mysql(12) mysql+flexresp(13) postgresql(14) postgresql+flexresp(15) bloat(16) inline(17) inline+flexresp(18) prelude(19) prelude+flexresp(20) Please see the documentation in /usr/share/doc/snort

Alternatives

Provides

  • libsf_dce2_preproc.so
  • libsf_dnp3_preproc.so
  • libsf_dns_preproc.so
  • libsf_engine.so
  • libsf_ftptelnet_preproc.so
  • libsf_gtp_preproc.so
  • libsf_imap_preproc.so
  • libsf_modbus_preproc.so
  • libsf_pop_preproc.so
  • libsf_reputation_preproc.so
  • libsf_sdf_preproc.so
  • libsf_sip_preproc.so
  • libsf_smtp_preproc.so
  • libsf_ssh_preproc.so
  • libsf_ssl_preproc.so
  • snort == 2.9.5.5-2.mga4
  • snort(x86-32) == 2.9.5.5-2.mga4

    Download

    Install Howto

    1. Enable Mageia Core repository on "Install and Remove Software"
    2. Update packages list:
      # urpmi.update -a
    3. Install snort rpm package:
      # urpmi snort

    Files

    • /etc/logrotate.d/snort
    • /etc/rc.d/init.d/snort
    • /etc/snort/classification.config
    • /etc/snort/gen-msg.map
    • /etc/snort/reference.config
    • /etc/snort/rules
    • /etc/snort/snort.conf
    • /etc/snort/threshold.conf
    • /etc/snort/unicode.map
    • /etc/sysconfig/snort
    • /usr/bin/snort_control
    • /usr/bin/u2boat
    • /usr/bin/u2spewfoo
    • /usr/lib/snort/
    • /usr/lib/snort/dynamicengine/libsf_engine.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_dce2_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_dnp3_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_dns_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_gtp_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_imap_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_modbus_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_pop_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_reputation_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_sdf_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_sip_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_smtp_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_ssh_preproc.so
    • /usr/lib/snort/dynamicpreprocessor/libsf_ssl_preproc.so
    • /usr/lib/tmpfiles.d/snort.conf
    • /usr/sbin/snort-plain
    • /usr/share/doc/snort/AUTHORS
    • /usr/share/doc/snort/BUGS
    • /usr/share/doc/snort/COPYING
    • /usr/share/doc/snort/CREDITS
    • /usr/share/doc/snort/ChangeLog
    • /usr/share/doc/snort/INSTALL
    • /usr/share/doc/snort/NEWS
    • /usr/share/doc/snort/PROBLEMS
    • /usr/share/doc/snort/README
    • /usr/share/doc/snort/README.GTP
    • /usr/share/doc/snort/README.PLUGINS
    • /usr/share/doc/snort/README.PerfProfiling
    • /usr/share/doc/snort/README.SMTP
    • /usr/share/doc/snort/README.UNSOCK
    • /usr/share/doc/snort/README.WIN32
    • /usr/share/doc/snort/README.active
    • /usr/share/doc/snort/README.alert_order
    • /usr/share/doc/snort/README.asn1
    • /usr/share/doc/snort/README.counts
    • /usr/share/doc/snort/README.csv
    • /usr/share/doc/snort/README.daq
    • /usr/share/doc/snort/README.dcerpc2
    • /usr/share/doc/snort/README.decode
    • /usr/share/doc/snort/README.decoder_preproc_rules
    • /usr/share/doc/snort/README.dnp3
    • /usr/share/doc/snort/README.dns
    • /usr/share/doc/snort/README.event_queue
    • /usr/share/doc/snort/README.filters
    • /usr/share/doc/snort/README.flowbits
    • /usr/share/doc/snort/README.frag3
    • /usr/share/doc/snort/README.ftptelnet
    • /usr/share/doc/snort/README.gre
    • /usr/share/doc/snort/README.http_inspect
    • /usr/share/doc/snort/README.imap
    • /usr/share/doc/snort/README.ipip
    • /usr/share/doc/snort/README.ipv6
    • /usr/share/doc/snort/README.modbus
    • /usr/share/doc/snort/README.multipleconfigs
    • /usr/share/doc/snort/README.normalize
    • /usr/share/doc/snort/README.pcap_readmode
    • /usr/share/doc/snort/README.pop
    • /usr/share/doc/snort/README.ppm
    • /usr/share/doc/snort/README.reload
    • /usr/share/doc/snort/README.reputation
    • /usr/share/doc/snort/README.rzb_saac
    • /usr/share/doc/snort/README.sensitive_data
    • /usr/share/doc/snort/README.sfportscan
    • /usr/share/doc/snort/README.sip
    • /usr/share/doc/snort/README.snort_control
    • /usr/share/doc/snort/README.ssh
    • /usr/share/doc/snort/README.ssl
    • /usr/share/doc/snort/README.stream5
    • /usr/share/doc/snort/README.tag
    • /usr/share/doc/snort/README.thresholding
    • /usr/share/doc/snort/README.u2boat
    • /usr/share/doc/snort/README.unified2
    • /usr/share/doc/snort/README.variables
    • /usr/share/doc/snort/RELEASE.NOTES
    • /usr/share/doc/snort/TODO
    • /usr/share/doc/snort/USAGE
    • /usr/share/doc/snort/WISHLIST
    • /usr/share/doc/snort/generators
    • /usr/share/doc/snort/snort_manual.pdf
    • /usr/share/doc/snort/snort_manual.tex
    • /usr/share/man/man8/snort.8.xz
    • /var/log/snort/empty

    Changelog

    2013-10-21 - umeabot <umeabot> 2.9.5.5-2.mga4 + Revision: 540665 - Mageia 4 Mass Rebuild

    2013-10-09 - dlucio <dlucio> 2.9.5.5-1.mga4 + Revision: 494145 - 2.9.5.5

    2013-08-26 - dlucio <dlucio> 2.9.5.3-1.mga4 + Revision: 471836 - 2.9.5.3 - P1 rediffed - P7 replaced with sed scripts - sed as new BR

    2013-04-25 - dlucio <dlucio> 2.9.4.6-1.mga3 + Revision: 411156 - 2.9.4.6 - P5 & P7 rediffed

    2013-03-24 - colin <colin> 2.9.4.1-2.mga3 + Revision: 404859 - Add systemd requires and general post/pre fixes (mga#9302)

    2013-03-23 - dlucio <dlucio> 2.9.4.1-1.mga3 + Revision: 404688 - 2.9.4.1 - P7 rediffed

    2013-01-14 - umeabot <umeabot> 2.9.4-3.mga3 + Revision: 382267 - Mass Rebuild - https://wiki.mageia.org/en/Feature:Mageia3MassRebuild + luigiwalser <luigiwalser> - add tmpfiles config for /run/snort

    2013-01-06 - cjw <cjw> 2.9.4-2.mga3 + Revision: 339799 - patch7: fix build with automake 1.13

    2012-12-04 - dlucio <dlucio> 2.9.4-1.mga3 + Revision: 326326 - 2.9.4

    2012-12-01 - fwang <fwang> 2.9.3.1-3.mga3 + Revision: 323837 - rebuild for new pcre

    Advertisement
    Advertisement