Package Details: snort

Git Clone URL: (read-only)
Package Base: snort
Description: A lightweight network intrusion detection system.
Upstream URL:
Licenses: GPL
Submitter: Snowman
Maintainer: robertfoster
Last Packager: robertfoster
Votes: 58
Popularity: 0.624826
First Submitted: 2012-11-16 17:33
Last Updated: 2018-05-13 15:07

Latest Comments

1 2 3 4 5 Next › Last »

Fandekasp commented on 2018-05-13 01:42

Same here, unable to upgrade snort for the past few weeks...

rbaj commented on 2018-04-26 17:20

I get an error during compilation. Is there a missing dependency?

sp_rpc_check.c:32:10: fatal error: rpc/rpc.h: No such file or directory

make[4]: *** [Makefile:487: sp_rpc_check.o] Error 1

:: failed to build snort package(s)

amish commented on 2017-07-03 07:59

Those are not actually files containing virus. Those rules have virus detection patterns but clamscan thinks the file containing those patterns as virus.

None the less. Rules probably should not be packaged. It should be left to pulledpork to download the rules.

tonus commented on 2017-07-03 03:09


I found two windows trojan viruses via clamscan after installation. It is highly ironic it has happened with snort. And, I am most disappointed; I would encourage you to recheck your compressed package for any hidden "treats". Thanks.

/home/USER/.cache/pacaur/snort/snort- Win.Trojan.cve_2011_2657-1 FOUND

/home/USER/.cache/pacaur/snort/emerging.rules.tar.gz: Html.Trojan.Blackhole-65 FOUND

bidulock commented on 2015-11-23 01:26

flex and bison are both in base-devel group and core repository. To compile packages from AUR you need base-devel loaded. It does not need to be listed as a dependency unless the package relies on a specific version.

ItachiSan commented on 2015-11-22 21:50

'flex' and 'bison' should be added as "makedepends".

saez0pub commented on 2015-10-13 12:29


Could you add other platforms :
arch=('i686' 'x86_64' 'armv6h' 'armv7h' 'arm')
Package is compiled and works fine under arm

Thermi commented on 2015-09-21 18:42

Please use sha256 for the checksum array. MD5 is known to be broken for years.

mzimmerman commented on 2015-06-22 19:06

I noticed bison should be a prerequisite also.

fauno commented on 2015-04-18 12:58

i think it should include etc/snort/rules/emerging.conf in the backup array, i had snort running without these rules for a while because the last upgrade overwrote my changes :|