snort-rules-default_2.9.7.0-5_all.deb


Advertisement

Description

snort-rules-default - flexible Network Intrusion Detection System - ruleset

Property Value
Distribution Ubuntu 16.04 LTS (Xenial Xerus)
Repository Ubuntu Universe i386
Package name snort-rules-default
Package version 2.9.7.0
Package release 5
Package architecture all
Package type deb
Installed size 1.78 KB
Download size 137.89 KB
Official Mirror archive.ubuntu.com
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules-based
logging and can perform content searching/matching in addition to
detecting a variety of other attacks and probes, such as buffer
overflows, stealth port scans, CGI attacks, SMB probes, and much more.
Snort has a real-time alerting capability, with alerts being sent to
syslog, a separate "alert" file, or even to a Windows computer via Samba.
This is the Snort default ruleset, which provides a basic set of network
intrusion detection rules developed by the Snort community. They can be
used as a basis for development of additional rules. Users using Snort to
defend networks in production environments are encouraged to update their
local rulesets as described in the included documentation or using the
oinkmaster package.

Alternatives

Package Version Architecture Repository
snort-rules-default_2.9.7.0-5_all.deb 2.9.7.0 all Ubuntu Universe
snort-rules-default - - -

Requires

Name Value
adduser >= 3.11
debconf >= 0.2.80
debconf-2.0 -

Provides

Name Value
snort-rules -

Download

Type URL
Binary Package snort-rules-default_2.9.7.0-5_all.deb
Source Package snort

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install snort-rules-default deb package:
    # sudo apt-get install snort-rules-default

Files

Path
/etc/snort/classification.config
/etc/snort/community-sid-msg.map
/etc/snort/gen-msg.map
/etc/snort/reference.config
/etc/snort/rules/attack-responses.rules
/etc/snort/rules/backdoor.rules
/etc/snort/rules/bad-traffic.rules
/etc/snort/rules/chat.rules
/etc/snort/rules/community-bot.rules
/etc/snort/rules/community-deleted.rules
/etc/snort/rules/community-dos.rules
/etc/snort/rules/community-exploit.rules
/etc/snort/rules/community-ftp.rules
/etc/snort/rules/community-game.rules
/etc/snort/rules/community-icmp.rules
/etc/snort/rules/community-imap.rules
/etc/snort/rules/community-inappropriate.rules
/etc/snort/rules/community-mail-client.rules
/etc/snort/rules/community-misc.rules
/etc/snort/rules/community-nntp.rules
/etc/snort/rules/community-oracle.rules
/etc/snort/rules/community-policy.rules
/etc/snort/rules/community-sip.rules
/etc/snort/rules/community-smtp.rules
/etc/snort/rules/community-sql-injection.rules
/etc/snort/rules/community-virus.rules
/etc/snort/rules/community-web-attacks.rules
/etc/snort/rules/community-web-cgi.rules
/etc/snort/rules/community-web-client.rules
/etc/snort/rules/community-web-dos.rules
/etc/snort/rules/community-web-iis.rules
/etc/snort/rules/community-web-misc.rules
/etc/snort/rules/community-web-php.rules
/etc/snort/rules/ddos.rules
/etc/snort/rules/deleted.rules
/etc/snort/rules/dns.rules
/etc/snort/rules/dos.rules
/etc/snort/rules/experimental.rules
/etc/snort/rules/exploit.rules
/etc/snort/rules/finger.rules
/etc/snort/rules/ftp.rules
/etc/snort/rules/icmp-info.rules
/etc/snort/rules/icmp.rules
/etc/snort/rules/imap.rules
/etc/snort/rules/info.rules
/etc/snort/rules/local.rules
/etc/snort/rules/misc.rules
/etc/snort/rules/multimedia.rules
/etc/snort/rules/mysql.rules
/etc/snort/rules/netbios.rules
/etc/snort/rules/nntp.rules
/etc/snort/rules/oracle.rules
/etc/snort/rules/other-ids.rules
/etc/snort/rules/p2p.rules
/etc/snort/rules/policy.rules
/etc/snort/rules/pop2.rules
/etc/snort/rules/pop3.rules
/etc/snort/rules/porn.rules
/etc/snort/rules/rpc.rules
/etc/snort/rules/rservices.rules
/etc/snort/rules/scan.rules
/etc/snort/rules/shellcode.rules
/etc/snort/rules/smtp.rules
/etc/snort/rules/snmp.rules
/etc/snort/rules/sql.rules
/etc/snort/rules/telnet.rules
/etc/snort/rules/tftp.rules
/etc/snort/rules/virus.rules
/etc/snort/rules/web-attacks.rules
/etc/snort/rules/web-cgi.rules
/etc/snort/rules/web-client.rules
/etc/snort/rules/web-coldfusion.rules
/etc/snort/rules/web-frontpage.rules
/etc/snort/rules/web-iis.rules
/etc/snort/rules/web-misc.rules
/etc/snort/rules/web-php.rules
/etc/snort/rules/x11.rules
/usr/share/doc/snort-rules-default/NEWS.Debian.gz
/usr/share/doc/snort-rules-default/README.Debian
/usr/share/doc/snort-rules-default/changelog.Debian.gz
/usr/share/doc/snort-rules-default/copyright

Changelog

See snort_2.9.7.0-5_i386.deb changelog.

See Also

Package Description
snort_2.9.7.0-5_i386.deb flexible Network Intrusion Detection System
snowballz_0.9.5.1-4_all.deb fun RTS game featuring snowball fights with penguins
snowdrop_0.02b-12.1_i386.deb plain text watermarking and watermark recovery
snp-sites_2.1.3-2_i386.deb Binary code for the package snp-sites
snpomatic_0.0.20151015-1_i386.deb fast, stringent short-read mapping software
sntop_1.4.3-4build1_i386.deb A curses-based utility that polls hosts to determine connectivity
so-synth-lv2_1.4-2_i386.deb Set of synthesizers for the LV2 plugin format
socat_1.7.3.1-1_i386.deb multipurpose relay for bidirectional data transfer
socket_1.1-10_i386.deb Multi purpose socket tool
socklog-run_2.1.0-8_all.deb system and kernel logging services
socklog_2.1.0-8_i386.deb system and kernel logging services (programs)
socks4-clients_4.3.beta2-19build1_i386.deb Socks4 enabled clients as rtelnet and rftp
socks4-server_4.3.beta2-19build1_i386.deb SOCKS4 server for proxying IP-based services over a firewall
sockstat_0.3-1.1_i386.deb view detailed information about open connections
socnetv_1.9-1.1_i386.deb Social Network Analysis and Visualisation application
Advertisement
Advertisement