snort-2.9.6.2-1-rosa2014.1.x86_64.rpm


Advertisement

Description

snort - An Intrusion Detection System (IDS)

Property Value
Distribution ROSA 2014.1
Repository ROSA Main x86_64
Package filename snort-2.9.6.2-1-rosa2014.1.x86_64.rpm
Package name snort
Package version 2.9.6.2
Package release 1-rosa2014.1
Package architecture x86_64
Package type rpm
Category Networking/Other
Homepage http://www.snort.org/
License GPLv2+
Maintainer -
Download size 2.28 MB
Installed size 5.89 MB
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules based logging
and can perform protocol analysis, content searching/matching and can be used
to detect a variety of attacks and probes, such as buffer overflows, stealth
port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
Snort has a real-time alerting capabilty, with alerts being sent to syslog, a
separate "alert" file, or as a WinPopup message via Samba's smbclient
This rpm is different from previous rpms and while it will not clobber
your current snort file, you will need to modify it.
There are 9 different packages available
All of them require the base snort rpm.  Additionally, you will need
to chose a binary to install.
/usr/sbin/snort should end up being a symlink to a binary in one of
the following configurations. We use update-alternatives for this.
Here are the different packages along with their priorities.
plain(10)               plain+flexresp(11)              mysql(12)
mysql+flexresp(13)      postgresql(14)                  postgresql+flexresp(15)
bloat(16)               inline(17)                      inline+flexresp(18)
prelude(19)             prelude+flexresp(20)
Please see the documentation in /usr/share/doc/snort

Alternatives

Package Version Architecture Repository
snort-2.9.6.2-2-rosa2014.1.x86_64.rpm 2.9.6.2 x86_64 ROSA Main Updates
snort-2.9.6.2-2-rosa2014.1.i586.rpm 2.9.6.2 i586 ROSA Main Updates
snort-2.9.6.2-1-rosa2014.1.i586.rpm 2.9.6.2 i586 ROSA Main
snort - - -

Requires

Name Value
libc.so.6()(64bit) -
libc.so.6(GLIBC_2.14)(64bit) -
libc.so.6(GLIBC_2.2.5)(64bit) -
libc.so.6(GLIBC_2.3)(64bit) -
libc.so.6(GLIBC_2.3.4)(64bit) -
libc.so.6(GLIBC_2.4)(64bit) -
libc.so.6(GLIBC_2.7)(64bit) -
libcrypto.so.1.0.0()(64bit) -
libdaq.so.2()(64bit) -
libdl.so.2()(64bit) -
libdl.so.2(GLIBC_2.2.5)(64bit) -
libdnet.so.1()(64bit) -
libm.so.6()(64bit) -
libm.so.6(GLIBC_2.2.5)(64bit) -
libnsl.so.1()(64bit) -
libpcap.so.1()(64bit) -
libpcre.so.1()(64bit) -
libpthread.so.0()(64bit) -
libpthread.so.0(GLIBC_2.2.5)(64bit) -
libz.so.1()(64bit) -
pcap -
pcre -
rpm-helper -
snort-rules -

Provides

Name Value
config(snort) == 0:2.9.6.2-1:2014.1
libsf_dce2_preproc.so()(64bit) -
libsf_dnp3_preproc.so()(64bit) -
libsf_dns_preproc.so()(64bit) -
libsf_engine.so()(64bit) -
libsf_ftptelnet_preproc.so()(64bit) -
libsf_gtp_preproc.so()(64bit) -
libsf_imap_preproc.so()(64bit) -
libsf_modbus_preproc.so()(64bit) -
libsf_pop_preproc.so()(64bit) -
libsf_reputation_preproc.so()(64bit) -
libsf_sdf_preproc.so()(64bit) -
libsf_sip_preproc.so()(64bit) -
libsf_smtp_preproc.so()(64bit) -
libsf_ssh_preproc.so()(64bit) -
libsf_ssl_preproc.so()(64bit) -
snort == 2.9.6.2-1:2014.1

Download

Type URL
Mirror mirror.rosalab.ru
Binary Package snort-2.9.6.2-1-rosa2014.1.x86_64.rpm
Source Package snort-2.9.6.2-1.src.rpm

Install Howto

  1. Enable ROSA Main repository on Install and Remove Software
  2. Update packages list:
    # urpmi.update -a
  3. Install snort rpm package:
    # urpmi snort

Files

Path
/etc/logrotate.d/snort
/etc/snort/classification.config
/etc/snort/file_magic.conf
/etc/snort/gen-msg.map
/etc/snort/reference.config
/etc/snort/rules
/etc/snort/snort.conf
/etc/snort/threshold.conf
/etc/snort/unicode.map
/etc/sysconfig/snort
/lib/systemd/system/snort.service
/usr/bin/u2boat
/usr/bin/u2spewfoo
/usr/lib64/snort-wrapper.sh
/usr/lib64/snort/
/usr/lib64/snort/dynamic_output/libsf_dynamic_output.a
/usr/lib64/snort/dynamicengine/libsf_engine.so
/usr/lib64/snort/dynamicpreprocessor/libsf_dce2_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_dnp3_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_dns_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_ftptelnet_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_gtp_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_imap_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_modbus_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_pop_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_reputation_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_sdf_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_sip_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_smtp_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_ssh_preproc.so
/usr/lib64/snort/dynamicpreprocessor/libsf_ssl_preproc.so
/usr/sbin/snort-plain
/usr/share/doc/snort/AUTHORS
/usr/share/doc/snort/BUGS
/usr/share/doc/snort/COPYING
/usr/share/doc/snort/CREDITS
/usr/share/doc/snort/ChangeLog
/usr/share/doc/snort/INSTALL
/usr/share/doc/snort/NEWS
/usr/share/doc/snort/PROBLEMS
/usr/share/doc/snort/README
/usr/share/doc/snort/README.GTP
/usr/share/doc/snort/README.PLUGINS
/usr/share/doc/snort/README.PerfProfiling
/usr/share/doc/snort/README.SMTP
/usr/share/doc/snort/README.UNSOCK
/usr/share/doc/snort/README.WIN32
/usr/share/doc/snort/README.active
/usr/share/doc/snort/README.alert_order
/usr/share/doc/snort/README.asn1
/usr/share/doc/snort/README.counts
/usr/share/doc/snort/README.csv
/usr/share/doc/snort/README.daq
/usr/share/doc/snort/README.dcerpc2
/usr/share/doc/snort/README.decode
/usr/share/doc/snort/README.decoder_preproc_rules
/usr/share/doc/snort/README.dnp3
/usr/share/doc/snort/README.dns
/usr/share/doc/snort/README.event_queue
/usr/share/doc/snort/README.file
/usr/share/doc/snort/README.file_ips
/usr/share/doc/snort/README.filters
/usr/share/doc/snort/README.flowbits
/usr/share/doc/snort/README.frag3
/usr/share/doc/snort/README.ftptelnet
/usr/share/doc/snort/README.gre
/usr/share/doc/snort/README.ha
/usr/share/doc/snort/README.http_inspect
/usr/share/doc/snort/README.imap
/usr/share/doc/snort/README.ipip
/usr/share/doc/snort/README.ipv6
/usr/share/doc/snort/README.modbus
/usr/share/doc/snort/README.multipleconfigs
/usr/share/doc/snort/README.normalize
/usr/share/doc/snort/README.pcap_readmode
/usr/share/doc/snort/README.pop
/usr/share/doc/snort/README.ppm
/usr/share/doc/snort/README.reload
/usr/share/doc/snort/README.reputation
/usr/share/doc/snort/README.rzb_saac
/usr/share/doc/snort/README.sensitive_data
/usr/share/doc/snort/README.sfportscan
/usr/share/doc/snort/README.sip
/usr/share/doc/snort/README.ssh
/usr/share/doc/snort/README.ssl
/usr/share/doc/snort/README.stream5
/usr/share/doc/snort/README.tag
/usr/share/doc/snort/README.thresholding
/usr/share/doc/snort/README.u2boat
/usr/share/doc/snort/README.unified2
/usr/share/doc/snort/README.variables
/usr/share/doc/snort/RELEASE.NOTES
/usr/share/doc/snort/TODO
/usr/share/doc/snort/USAGE
/usr/share/doc/snort/WISHLIST
/usr/share/doc/snort/generators
/usr/share/doc/snort/snort_manual.pdf
/usr/share/doc/snort/snort_manual.tex
/usr/share/man/man8/snort.8.xz
/var/log/snort/empty
/var/run/snort

Changelog

2014-09-09 - Denis Silakov <denis.silakov@rosalab.ru> 2.9.6.2-1
+ Revision: a34319f
- Fix files

See Also

Package Description
snort-bloat-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with flexresp+mysql+postgresql+inline+prelude support
snort-devel-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort development files
snort-inline+flexresp-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with Inline and Flexible Response support
snort-inline-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with Inline support
snort-mysql+flexresp-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with MySQL database and Flexible Response support
snort-mysql-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with MySQL database support
snort-plain+flexresp-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with Flexible Response
snort-postgresql+flexresp-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with PostgreSQL database and Flexible Response support
snort-postgresql-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with PostgreSQL database support
snort-prelude+flexresp-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with Prelude and Flexible Response support
snort-prelude-2.9.6.2-1-rosa2014.1.x86_64.rpm Snort with Prelude support
snort-rules-2.4-10-rosa2014.1.noarch.rpm The GPL'ed Rulesets from snortrules-pr-2.4
soprano-2.9.4-2-rosa2014.1.x86_64.rpm Library which provides a nice QT interface to RDF
soprano-devel-2.9.4-2-rosa2014.1.x86_64.rpm Library
soprano-plugin-common-2.9.4-2-rosa2014.1.x86_64.rpm Common parsers and serializers
Advertisement
Advertisement