https://inliniac.net/blog/tag/sigs/ Recent content in Sigs on Inliniac Hugo en Sat, 16 Jun 2007 12:37:13 +0000 https://inliniac.net/blog/2007/06/16/debian-should-update-their-snort-package/ Sat, 16 Jun 2007 12:37:13 +0000 https://inliniac.net/blog/2007/06/16/debian-should-update-their-snort-package/ <p>Last week there was some discussion in the #snort IRC channel about why Debian distributes such an ancient version of Snort, namely version 2.3.3. This release is more than 2 years old and no longer supported by <a href="http://www.sourcefire.com">SourceFire</a>. The snort.org website says about the old versions:</p> <blockquote> <p>You should not use these unless you <strong>really</strong> know what you are doing. Many bugs may have been fixed, including remote vulnerabilities</p></blockquote> <p>Even though Debian is able to fix any security bugs themselves, and they don&rsquo;t need to rely on SourceFire for this, Snort 2.3.3 is still going to be inferior to the recent 2.6.1.5. Why? Well recent Snort versions have many more and improved detection options, such as a better pattern matcher, defragmentation preprocessor, improved stream preprocessor, smtp plugin, etc, etc.</p>