Groups
Sign in
Groups
pulledpork users
Conversations
About
Send feedback
Help
pulledpork users
Contact owners and managers
1–30 of 140
Mark all as read
Report group
0 selected
MichaelS
4/19/15
0.7.1 has a problem on Windows
I can process and it looks somewhat good, but PulledPork 0.7.1 gets and error: Reading rules...
unread,
0.7.1 has a problem on Windows
I can process and it looks somewhat good, but PulledPork 0.7.1 gets and error: Reading rules...
4/19/15
DigiAngel
11/11/14
Upgrade to 2.9.7.0 results in Pulledpork not generating stub rules
Topic says it: Generating Stub Rules.... An error occurred: WARNING: No dynamic libraries found in
unread,
Upgrade to 2.9.7.0 results in Pulledpork not generating stub rules
Topic says it: Generating Stub Rules.... An error occurred: WARNING: No dynamic libraries found in
11/11/14
MichaelS
8/18/14
decoder and preprocessor event rules
When PulledPork processes the .rules into a single snort.rules files how does PulledPork deal with
unread,
decoder and preprocessor event rules
When PulledPork processes the .rules into a single snort.rules files how does PulledPork deal with
8/18/14
Jeremy Hoel
6/11/14
Odd PP errors, started over past 5 or 6 days
I've started getting some errors over the past few days when running PP Setting Flowbit State....
unread,
Odd PP errors, started over past 5 or 6 days
I've started getting some errors over the past few days when running PP Setting Flowbit State....
6/11/14
Brad Turnbough
3/6/14
IPREP difficulties
Good Morning, I'm having some difficulties getting the ip reputation piece up and working the way
unread,
IPREP difficulties
Good Morning, I'm having some difficulties getting the ip reputation piece up and working the way
3/6/14
Michal Šutta
3/5/14
specifying policy
Hello, i run Pulledpork with this command where i want to specify policy: sudo pulledpork.pl -c /usr/
unread,
specifying policy
Hello, i run Pulledpork with this command where i want to specify policy: sudo pulledpork.pl -c /usr/
3/5/14
JJ Cummings
, …
Michael Steele
8
2/18/14
Re: Enabling all the rules for testing using PulledPork?
Attached is my configuration files. Can you take a look and make SURE they are correct. My PP run
unread,
Re: Enabling all the rules for testing using PulledPork?
Attached is my configuration files. Can you take a look and make SURE they are correct. My PP run
2/18/14
DigiAngel
, …
JJ Cummings
4
12/20/13
Modifysid, ONLY for gid 1?
Thanks for the responses on this. James On Dec 19, 2013, at 11:48 AM, JJ Cummings <cummingsj@gmail
unread,
Modifysid, ONLY for gid 1?
Thanks for the responses on this. James On Dec 19, 2013, at 11:48 AM, JJ Cummings <cummingsj@gmail
12/20/13
Kim Halavakoski
,
JJC
2
10/29/13
Pulledpork stuck on downloading latest rules tarball: No match
There is a problem with the MD5 (or was) on the snort.org website... JJC On Fri, Oct 25, 2013 at 7:17
unread,
Pulledpork stuck on downloading latest rules tarball: No match
There is a problem with the MD5 (or was) on the snort.org website... JJC On Fri, Oct 25, 2013 at 7:17
10/29/13
Simone
,
JJC
2
10/29/13
How to use VRT Edge Rulepack with PP
It is, please submit a feature request at the site for me? On Fri, Oct 25, 2013 at 4:10 AM, Simone
unread,
How to use VRT Edge Rulepack with PP
It is, please submit a feature request at the site for me? On Fri, Oct 25, 2013 at 4:10 AM, Simone
10/29/13
Jeremy Hoel
,
JJ Cummings
3
10/21/13
Feature Request / Bug report
Will do. On Oct 21, 2013 6:41 PM, "JJ Cummings" <cumm...@gmail.com> wrote: Good
unread,
Feature Request / Bug report
Will do. On Oct 21, 2013 6:41 PM, "JJ Cummings" <cumm...@gmail.com> wrote: Good
10/21/13
DigiAngel
,
JJ Cummings
3
10/10/13
New pp doesn't seem to be creating rules
That did the trick...thanks so much JJ! On Wednesday, October 9, 2013 4:06:37 PM UTC-6, DigiAngel
unread,
New pp doesn't seem to be creating rules
That did the trick...thanks so much JJ! On Wednesday, October 9, 2013 4:06:37 PM UTC-6, DigiAngel
10/10/13
Jeremy Hoel
10/3/13
duplicate rules
When using registered VRT rules AND the community ruleset (which gets updated more often from
unread,
duplicate rules
When using registered VRT rules AND the community ruleset (which gets updated more often from
10/3/13
nominal6
9/25/13
enablesid.conf format
Hello, I would like to know the meaning of the first digit in enablesid.conf. For instance, for a
unread,
enablesid.conf format
Hello, I would like to know the meaning of the first digit in enablesid.conf. For instance, for a
9/25/13
Michael Steele
2
9/19/13
Unable to download rules directly
Please disregard this problem, all fixed. My bad… Best regards, Michael... From: pulledpork-users@
unread,
Unable to download rules directly
Please disregard this problem, all fixed. My bad… Best regards, Michael... From: pulledpork-users@
9/19/13
Michael Steele
9/18/13
Version extraction for Windows
JJ, Pulled Pork is getting more and more popular for Windows, which brings me to the question: PP for
unread,
Version extraction for Windows
JJ, Pulled Pork is getting more and more popular for Windows, which brings me to the question: PP for
9/18/13
samiux
9/17/13
Cannot put the ET rules in the dropped list
I am running PulledPork 0.7.0 with Snort and ET rules at inline mode with afpacket. Some rules can be
unread,
Cannot put the ET rules in the dropped list
I am running PulledPork 0.7.0 with Snort and ET rules at inline mode with afpacket. Some rules can be
9/17/13
Jeremy Hoel
, …
JJC
8
9/5/13
question about 0.70 and flags
inline... On Thu, Sep 5, 2013 at 8:44 AM, Michael Steele <mich...@winsnort.com> wrote: I can
unread,
question about 0.70 and flags
inline... On Thu, Sep 5, 2013 at 8:44 AM, Michael Steele <mich...@winsnort.com> wrote: I can
9/5/13
chris....@tampinc.com
,
JJC
5
8/22/13
dropsid.conf
let's reduce the complexity of your pcre.. try just pcre:balanced-ips\ drop On Thu, Aug 22, 2013
unread,
dropsid.conf
let's reduce the complexity of your pcre.. try just pcre:balanced-ips\ drop On Thu, Aug 22, 2013
8/22/13
chris....@tampinc.com
,
JJ Cummings
4
8/22/13
PP sid_msg_version=2
Understood and I'll clear that up in the docs! Sent from the iRoad On Aug 22, 2013, at 9:06,
unread,
PP sid_msg_version=2
Understood and I'll clear that up in the docs! Sent from the iRoad On Aug 22, 2013, at 9:06,
8/22/13
Russell Fulton
,
JJC
2
8/22/13
getting undefined values with 0.7.0 revision 267.
This may also be related to a bug where some of the href deref calls are using a newer syntax that
unread,
getting undefined values with 0.7.0 revision 267.
This may also be related to a bug where some of the href deref calls are using a newer syntax that
8/22/13
DigiAngel
,
JJC
2
8/22/13
Pulledpork, multiple instances, and sid-msg.map
You'll need to run a conf that includes everything you want in it unfortunately. On Tuesday, July
unread,
Pulledpork, multiple instances, and sid-msg.map
You'll need to run a conf that includes everything you want in it unfortunately. On Tuesday, July
8/22/13
mich...@winsnort.com
,
JJC
2
7/19/13
PulledPork 0.7.0 on the Windows Intrusion Detection System (WinIDS)
Thanks for testing it out! On Fri, Jul 19, 2013 at 7:47 AM, <mich...@winsnort.com> wrote: JJ,
unread,
PulledPork 0.7.0 on the Windows Intrusion Detection System (WinIDS)
Thanks for testing it out! On Fri, Jul 19, 2013 at 7:47 AM, <mich...@winsnort.com> wrote: JJ,
7/19/13
Charles Smith
,
JJC
2
6/20/13
local.rules and disablesid.conf
Charles, It is not intended to do this, only do process the local.rules for inclusion in the sid-msg.
unread,
local.rules and disablesid.conf
Charles, It is not intended to do this, only do process the local.rules for inclusion in the sid-msg.
6/20/13
JJC
5/31/13
Re: Rules not updating 403 snort.org not www.snort.org certs
Maybe try updating IO::Socket::SSL and Crypt::SSLeay On Mon, May 20, 2013 at 1:03 PM, <drdavidjday
unread,
Re: Rules not updating 403 snort.org not www.snort.org certs
Maybe try updating IO::Socket::SSL and Crypt::SSLeay On Mon, May 20, 2013 at 1:03 PM, <drdavidjday
5/31/13
JJC
5/31/13
Re: 403 error
Can you pull manually using the oinkcode and wget... "wget https://www.snort.org/reg-rules/
unread,
Re: 403 error
Can you pull manually using the oinkcode and wget... "wget https://www.snort.org/reg-rules/
5/31/13
DigiAngel
,
JJ Cummings
3
5/14/13
Multiple issues
Yea that TOTALLY woked..thanks for the quick fix! James On Tuesday, May 14, 2013 6:23:23 AM UTC-6,
unread,
Multiple issues
Yea that TOTALLY woked..thanks for the quick fix! James On Tuesday, May 14, 2013 6:23:23 AM UTC-6,
5/14/13
Ricky Huang
2
3/27/13
Support for VRT Community ruleset?
Sorry, I feel stupid now (RTFM, I know): it's in the announcement, in case anyone's
unread,
Support for VRT Community ruleset?
Sorry, I feel stupid now (RTFM, I know): it's in the announcement, in case anyone's
3/27/13
Ricky Huang
3/27/13
"Rule Stats" "No Rule Changes" when switching policy
Hello all, When I switch security policy (and/or change rules) the "Rule Stats" at the end
unread,
"Rule Stats" "No Rule Changes" when switching policy
Hello all, When I switch security policy (and/or change rules) the "Rule Stats" at the end
3/27/13
Ricky Huang
,
JJC
5
3/26/13
Unable to enable/disable/drop SIDs unless it's a fresh download
On Mar 21, 2013, at 9:32 AM, JJC <cumm...@gmail.com> wrote: Ok, just committed the codefix to
unread,
Unable to enable/disable/drop SIDs unless it's a fresh download
On Mar 21, 2013, at 9:32 AM, JJC <cumm...@gmail.com> wrote: Ok, just committed the codefix to
3/26/13