snort - flexible Network Intrusion Detection System

Property Value
Distribution Ubuntu 16.04 LTS (Xenial Xerus)
Repository Ubuntu Universe i386
Package name snort
Package version
Package release 5
Package architecture i386
Package type deb
Installed size 2.05 KB
Download size 647.32 KB
Official Mirror
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules-based
logging and can perform content searching/matching in addition to
detecting a variety of other attacks and probes, such as buffer
overflows, stealth port scans, CGI attacks, SMB probes, and much more.
Snort has a real-time alerting capability, with alerts being sent to
syslog, a separate "alert" file, or even to a Windows computer via Samba.
This package provides the plain-vanilla version of Snort.


Package Version Architecture Repository
snort_2.9.7.0-5_amd64.deb amd64 Ubuntu Universe
snort - - -


Name Value
adduser >= 3.11
debconf >= 0.5
debconf-2.0 -
libc6 >= 2.16
libdaq2 -
libdumbnet1 >= 1.8
liblzma5 >= 5.1.1alpha+20120614
libpcap0.8 >= 1.0.0
libpcre3 -
logrotate -
net-tools -
rsyslog -
snort-common >=
snort-common-libraries >=
snort-rules-default >=
system-log-daemon -
zlib1g >= 1:1.1.4


Name Value
snort-mysql -
snort-pgsql -


Name Value
snort-common << 2.0.2-3


Type URL
Binary Package snort_2.9.7.0-5_i386.deb
Source Package snort

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install snort deb package:
    # sudo apt-get install snort




2015-06-30 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=medium
* debian/control: Depend on perl, not perl-modules (Closes: #779126)
2014-12-09 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=low
* debian/control: Updated deprecated VCs URL to
* Include Snort tools u2boat and u2spewfoo to parse Unified2 log format
files (Closes: #770882):
- debian/snort.install: Install the files in the Snort package
- debian/{u2boat,u2spewfoo}.1 create new manpages for the tools
- debian/snort.manpages: add the new manpages to the package
- debian/snort.dirs: create usr/bin/ for the new tools
* debian/rules: 
- Use dh_prep instead of dh_clean -k
* debian/snort.manpages: Add the manpage for snort-stat, which was not
included in the snort package (but the script was)
* Rebuild with the latest daq library upstream (libdaq2). Libdaq0 is
deprecated/obsolete and not maintained upstrea
2014-10-24 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=high
* debian/control: 
- Add pkg-config in Build-Depends, it provides the PKG_CHECK_MODULES
macro used in This fixes a FTBFS observed in the
- Add libzma-dev dependency in Build-Depends as it is used in if available
2014-10-24 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=high
* The new upstream release, as seen with the previous upload, fixes the Out
of Memory errors found in buildds when building (Closes: #765637)
* debian/control: Add zlib1g-dev dependency in Build-Depends to fix FTFBFS
2014-10-24 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=high
* Upgrade to latest upstream version. Rules updates have been dropped
by Snort upstream for older releases.  Snort is not supported for
rule updates since December 2013 (Closes: #753915)
For more information see:
* debian/patches/{config,config_disabled_rules,fix_upstream_typos}: Refresh
to apply to the newest source
* debian/rules: 
+ Use dpkg-buildflags to setup the defult compiler and link flags.
+ Enable hardening options when building
* debian/control: Build-Depend on (dpkg-dev >= 1.16.1~) due to above change
* debian/patches/configure_werror: New patch to fix so
that it can work properly when setting the hardening flags
* debian/patches/hardening_werror: New patch to fix issues found
when building with -Werror 
* Debconf updated Translations:
- Updated Dutch translation, contributed by Frans Spiesschaert (Closes:
2014-10-06 - Javier Fernández-Sanguino Peña <>
snort ( unstable; urgency=medium
* debian/control: Drop libgnutls-dev, as it is not longer required and it is scheduled
for removal in sid, and (apparently) uninstallable. (Closes: #764108)
* debian/control, debian/rules: Run dh-autoreconf when building to update
config.{sub, guess} and {libtool, aclocal}.m4 (Closes:  #748713)
* debian/snort.init.d: Change the permissions of the snort PIDFILE once
snort is started in order to prevent the following error messages when
snort is *re*started:
snort[xxxx]: Could not remove pid file /var/run// Permission denied
(Closes: #753914)
* debian/snort-stat.8: Fix filename of the alert log file and point to the
correct location. (Closes: #709246)
* Debconf updated Translations:
- Updated Russian translation, contributed by Yuri Kozlov 
(Closes: 729710, #721483)

See Also

Package Description
snowballz_0.9.5.1-4_all.deb fun RTS game featuring snowball fights with penguins
snowdrop_0.02b-12.1_i386.deb plain text watermarking and watermark recovery
snp-sites_2.1.3-2_i386.deb Binary code for the package snp-sites
snpomatic_0.0.20151015-1_i386.deb fast, stringent short-read mapping software
sntop_1.4.3-4build1_i386.deb A curses-based utility that polls hosts to determine connectivity
so-synth-lv2_1.4-2_i386.deb Set of synthesizers for the LV2 plugin format
socat_1.7.3.1-1_i386.deb multipurpose relay for bidirectional data transfer
socket_1.1-10_i386.deb Multi purpose socket tool
socklog-run_2.1.0-8_all.deb system and kernel logging services
socklog_2.1.0-8_i386.deb system and kernel logging services (programs)
socks4-clients_4.3.beta2-19build1_i386.deb Socks4 enabled clients as rtelnet and rftp
socks4-server_4.3.beta2-19build1_i386.deb SOCKS4 server for proxying IP-based services over a firewall
sockstat_0.3-1.1_i386.deb view detailed information about open connections
socnetv_1.9-1.1_i386.deb Social Network Analysis and Visualisation application
sofa-apps_1.0~beta4-10ubuntu2_i386.deb GUI for the Simulation Open Framework Architecture (SOFA)