oinkmaster - Snort rules manager

Distribution: Ubuntu 12.04 LTS (Precise Pangolin)
Repository: Ubuntu Universe amd64
Package name: oinkmaster
Package version: 2.0
Package release: 3
Package architecture: all
Package type: deb
Installed size: 332 B
Download size: 90.90 KB
Official Mirror: archive.ubuntu.com
A simple script to manage and update Snort rules with the capability of disabling, modifying and enabling specific rules after an update. Oinkmaster will tell you exactly what has changed since your last update, giving you good control of your rules. It also can be used to manage updates from both the official provider (www.snort.org) and from home-grown rulesets.



  • snort-rules


    Binary package: oinkmaster_2.0-3_all.deb
    Source package: oinkmaster

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install oinkmaster deb package:
      # sudo apt-get install oinkmaster


    • /etc/oinkmaster.conf
    • /usr/sbin/oinkmaster
    • /usr/share/doc/oinkmaster/FAQ.gz
    • /usr/share/doc/oinkmaster/README.Debian
    • /usr/share/doc/oinkmaster/README.contrib
    • /usr/share/doc/oinkmaster/README.gui
    • /usr/share/doc/oinkmaster/README.gz
    • /usr/share/doc/oinkmaster/README.templates.gz
    • /usr/share/doc/oinkmaster/UPGRADING
    • /usr/share/doc/oinkmaster/changelog.Debian.gz
    • /usr/share/doc/oinkmaster/changelog.gz
    • /usr/share/doc/oinkmaster/copyright
    • /usr/share/doc/oinkmaster/examples/template-examples.conf.gz
    • /usr/share/man/man1/oinkmaster.1.gz
    • /usr/share/oinkmaster/addmsg.pl
    • /usr/share/oinkmaster/addsid.pl
    • /usr/share/oinkmaster/create-sidmap.pl
    • /usr/share/oinkmaster/makesidex.pl
    • /usr/share/oinkmaster/oinkgui.pl


    2010-10-28 - Javier Fernandez-Sanguino Pen~a <jfs@debian.org> oinkmaster (2.0-3) unstable; urgency=low * Update with content from upstream's CVS: - oinkmaster.conf: Remove obsolete URLs and provide urls to VRT certified rules and Emerging Threats rules. (Closes: 456243) - oinkmaster.pl, create-sidmap.pl: new features - Update of upstream's e-mail address in several documentation. * debian/rules: - Do not install debian/oinkmaster.conf but install upstream's instead. * debian/oinkmaster.conf: removed, use upstream's instead. The configuration file now ships with everything commented out as it requires changes for every enviornment. The previous values sets are now the default in the script. * debian/dirs, debian/rules: do not create /var/run/oinkmaster * With the above changes, the temporary directory used now is based on the user's environment (TMPDIR, TMP) or defaults to /tmp. This is the default, and has been enabled after reviewing the code of oinkmaster.pl and making sure that this (hopefully) does not open up temporary race condition security bugs. Now /var/run/oinkmaster is no longer used, which prevents using due to the use of tmpfs in /var/run (Closes: 519804) (LP: #331853) * debian/control: - Move homepage to header - Add Vcs-Cvs and Vcs-Browse headers information * Change the Debian maintainer's upstream email address in debian files. * debian/compat: Change to compatibility version 5

    2007-12-02 - Javier Fernandez-Sanguino Pen~a <jfs@debian.org> oinkmaster (2.0-2) unstable; urgency=low * Added watch file provided by Raphael Geissert (Closes: #449731)

    2006-04-23 - Javier Fernandez-Sanguino Pen~a <jfs@computer.org> oinkmaster (2.0-1) unstable; urgency=low * New upstream release.

    2005-04-24 - Javier Fernandez-Sanguino Pen~a <jfs@computer.org> oinkmaster (1.2-1) unstable; urgency=low * New upstream release - The configuration file now provides proper URLs to download either the Snort Community Rules or registered Snort rules (Closes: #305048) * Package Provides: snort-rules (CloseS: #276609)

    2005-02-22 - Javier Fernandez-Sanguino Pen~a <jfs@computer.org> oinkmaster (1.1-1) unstable; urgency=low * New upstream release. - Install new README.templates documentation and templates-example.conf example * Install the contributed scripts in /usr/share/oinkmaster

    2004-09-13 - Javier Fernandez-Sanguino Pen~a <jfs@computer.org> oinkmaster (1.0-1) unstable; urgency=low * Initial Release (#219996). This is needed for the release since there is currently no mechanism to update Snort's ruleset * Provide a custom configuration file, it is somewhat restricted so that only root will be able to download new rules under /var/run/oinkmaster, it will use Perl's implementations of libraries to avoid system calls to wget/tar/gzip * Updated ruleset location to 2.2