I think I may have a solution. I have added the submitor name to our
standard Signature info page. I have not added any contact info about
the submitor though.
Everyone like this?
James Ashton
BleedingSnort.com
-----Original Message-----
From: snort-sigs-admin@lists.sourceforge.net
[mailto:snort-sigs-admin@lists.sourceforge.net] On Behalf Of Matt
Jonkman
Sent: Wednesday, November 03, 2004 3:26 PM
To: Frank Knobbe
Cc: snort-sigs@lists.sourceforge.net
Subject: Re: [Snort-sigs] Proposal for addition of author to standard
rule listings
We're all for that here at Bleeding Snort. The only concern would be
spammer harvesting of the emails, but we're all at risk from posting to
the lists we participate in anyway. So that's probably a minimal extra
risk.
We're almost ready to put out the web interface to the bleeding snort
rules. That does include tracking as to who the owner and writer of a
rule is. We'll evolve that functionality over time I'm sure.
What we hope to maintain is not necessarily just original writer, but
responsible party as well. Just because a person writes a sig doesn't
mean they're always be around to update as needed, or always have access
to the same systems to verify with. So we hope that on the bleeding
snort rules we can have at least a person that's taken responsibility
for a rule if the original author is gone.
So far that's working very well informally. We hope to make that more
formal with the new database interface.
Having the convention of an author in the reference field would be very
nice. Great idea Frank.
Matt
Frank Knobbe wrote:
Greetings,
I would like to propose the addition of an author reference to the
rules. This is not to gloat about rules (although it might entice
people
to submit rules as their name in the rule shows their active community
participation). But the main idea is to put some accountability on the
submitter in hopes to raise the quality of community submitted rules.
Since there is no "author:" tag in Snort, or a comment field, my
thought
was to use the "reference:" field for that purpose. So I would like to
propose the addition of "author" as a reference type. That way rules
can
be referenced to their submitter (and subsequent people that modify,
tweak and improve the rule). I envision something like
"reference:author,bmc@snort.org;".
Again, the main goals are to a) improve active participation (much
like
with the documentation efforts), and b) to cause people to create
better
quality rules before their name gets attached to it.
What is the thought of the community of this idea?
Regards,
Frank
-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_idU88&alloc_id�065&opÌk
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
