Probably because it has support for using reject as well as drop, alert
and log. The reject keyword allows you to reset the connection rather
than just drop it.
-----Original Message-----
From: snort-users-admin@lists.sourceforge.net
[mailto:snort-users-admin@lists.sourceforge.net] On Behalf Of Matt
Kettler
Sent: Monday, March 28, 2005 2:31 PM
To: snort-users@lists.sourceforge.net
Subject: Re: [Snort-users] why old libnet?
Florin Andrei wrote:
My thoughts exactly, but it looks like libnet is also required by --
enable-inline
If i don't put in --enable-inline, it does not require libnet. If i do
put it in, it requires libnet.
That strikes me as odd.. I knew --enable-inline required libipq, but I
did not realize it required libnet.. That seems odd to me.
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id�396&opÌk
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list
