[Snort-users] RE:The System works !! one question please !
This is a discussion on [Snort-users] RE:The System works !! one question please ! within the Snort forums, part of the System Security and Security Related category; The problem if I use cidr is that in the range there will be ip's that they don’t ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
09-21-2004
|
|||
|
|||
[Snort-users] RE:The System works !! one question please !
The problem if I use cidr is that in the range there
will be ip's that they don’t have http servers on tham .. What will be the result of that ? I am trying to reduce false positives... I received another replay from Alex.Butcher he is offering the folowing : It looks like Snort's configuration file parser has a maximum line length of 1024 characters (defined by STD_BUF in src/snort.h). To (try to) change this, you'll need to modify that definition in snort.h and rebuild. Alternatively, a workaround would be to define two or more variables, and duplicate the signatures that use HTTP_SERVERS. I am afraid to compile again... after so much work it took me to start it working... What u soggest ? Thanks !! I am reading the book of jack koziol. __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - 100MB free storage! http://promotions.yahoo.com/new_mail ------------------------------------------------------- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
