Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org

from [Frank Knobbe] Network Security [Permanent Link]
Subject: Re: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org?
Date: Wed, 30 Mar 2005 21:23:19 -0600 
On Wed, 2005-03-30 at 20:58 -0500, Matt Kettler wrote:

I think Frank's point isn't that the old versions are there, it's why
aren't the new ones posted.


The new version of the old rules to be exact :)


Were the above rules originally sourcefire/VRT rules, or were they
originally community rules?


I was under the impression that all old rules (until around SID 3458 I
believe) are GPL rules and will be maintained as such. That should also
include new versions of these rules (like the update to the DNS rules).
Yet these new versions are not available via CVS for example while the
file /etc/sid has been updated in CVS.


If they were originally community rules, I'd suspect SourceFire will
need permission from the rule author to modify the rule and distribute
the updates on a non GPL basis.


Why? Doesn't the GPL allow anyone to modify the rules?

Perhaps just a wrinkle in the new way of doing things, but I thought it
was worth pointing out. I hope these GPL rules will be continued in CVS.

Cheers,
Frank

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Snort-users] mysql not starting at boot, Harper, Patrick
Next by Date:  [Snort-users] system commands, gareth
Previous by Thread:  Re: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org?, Matt Kettler
Next by Thread:  Re: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org?, Matt Kettler
Indexes:  [Date] [Thread] [Top] [All Lists]