Package Details: snort 2.9.11-1

Git Clone URL: https://aur.archlinux.org/snort.git (read-only)
Package Base: snort
Description: A lightweight network intrusion detection system.
Upstream URL: http://www.snort.org
Licenses: GPL
Submitter: Snowman
Maintainer: M0Rf30
Last Packager: M0Rf30
Votes: 54
Popularity: 0.121291
First Submitted: 2012-11-16 17:33
Last Updated: 2017-10-14 12:50

Latest Comments

amish commented on 2017-07-03 07:59

Those are not actually files containing virus. Those rules have virus detection patterns but clamscan thinks the file containing those patterns as virus.

None the less. Rules probably should not be packaged. It should be left to pulledpork to download the rules.

tonus commented on 2017-07-03 03:09

Hello,

I found two windows trojan viruses via clamscan after installation. It is highly ironic it has happened with snort. And, I am most disappointed; I would encourage you to recheck your compressed package for any hidden "treats". Thanks.

Errors:
/home/USER/.cache/pacaur/snort/snort-2.9.9.0-1-x86_64.pkg.tar.xz: Win.Trojan.cve_2011_2657-1 FOUND

/home/USER/.cache/pacaur/snort/emerging.rules.tar.gz: Html.Trojan.Blackhole-65 FOUND

bidulock commented on 2015-11-23 01:26

flex and bison are both in base-devel group and core repository. To compile packages from AUR you need base-devel loaded. It does not need to be listed as a dependency unless the package relies on a specific version.

ItachiSan commented on 2015-11-22 21:50

'flex' and 'bison' should be added as "makedepends".

saez0pub commented on 2015-10-13 12:29

Hello,

Could you add other platforms :
arch=('i686' 'x86_64' 'armv6h' 'armv7h' 'arm')
Package is compiled and works fine under arm

Thermi commented on 2015-09-21 18:42

Please use sha256 for the checksum array. MD5 is known to be broken for years.

mzimmerman commented on 2015-06-22 19:06

I noticed bison should be a prerequisite also.

fauno commented on 2015-04-18 12:58

i think it should include etc/snort/rules/emerging.conf in the backup array, i had snort running without these rules for a while because the last upgrade overwrote my changes :|

GI_Jack commented on 2015-02-05 18:55

I get this:

$ snort -vde
Running in packet dump mode

--== Initializing Snort ==--
Initializing Output Plugins!
ERROR: Can't find pcap DAQ!
Fatal Error, Quitting..

found that this:

--with-daq-libraries=/usr/lib/

should be

--with-daq-libraries=/usr/lib/daq

because it works with this:

snort -vde --daq-dir /usr/lib/daq/


fauno commented on 2015-01-17 17:40

also, when installing the service file with "systemctl enable snort@enp0s18.service" it installs as eth0 anyway

All comments