webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-16 22:13:01 +02:00
Code Issues Packages Projects Releases Wiki Activity

Replaced snort gpl community rules by emergingthreats.net rules.

Browse Source
This commit is contained in:
Arne Fitzenreiter
2010-06-14 19:00:26 +02:00
parent 5357323927
commit ce0e83b3ba
6 changed files with 19 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/initscripts/init.d/snort
View File

@@ -62,6 +62,14 @@ fi
case "$1" in
start)
# Disable incompatible rules
for file in $(ls /etc/snort/rules/*.rules); do
sed -i 's|^alert.*!\[\$DNS_SERVERS|#&|g' $file
sed -i 's|^alert.*!\$SSH_PORTS|#&|g' $file
sed -i 's|^alert.*!\$HOME_NET|#&|g' $file
sed -i 's|^alert.*!\$SQL_SERVERS|#&|g' $file
done
for DEVICE in $DEVICES; do
boot_mesg "Starting Intrusion Detection System on $DEVICE..."
/usr/sbin/snort -c /etc/snort/snort.conf -i $DEVICE -D -l /var/log/snort --create-pidfile --nolock-pidfile --pid-path /var/run/