Hello,
i run Pulledpork with this command where i want to specify policy:
sudo
pulledpork.pl -c /usr/local/etc/pulledpork/pulledpork.conf -I security
but i get this output
_____ ____
`----,\ )
`--==\\ / PulledPork v0.7.0 - Swine Flu!
`--==\\/
.-~~~~-.Y|\\_ Copyright (C) 2009-2013 JJ Cummings
| \ \ _(")
\ /-| ||'--' Rules give me wings!
\_\ \_\\
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Checking latest MD5 for snortrules-snapshot-2960.tar.gz....
They Match
Done!
Checking latest MD5 for community-rules.tar.gz....
They Match
Done!
Checking latest MD5 for opensource.gz....
They Match
Done!
Writing /var/log/snort/sid_changes.log....
Done
No Rule Changes
No IP Blacklist Changes
Done
but there are no rules changes. when i change the type of policy to Balanced i get the same output.
sudo
pulledpork.pl -c /usr/local/etc/pulledpork/pulledpork.conf -I balanced
_____ ____
`----,\ )
`--==\\ / PulledPork v0.7.0 - Swine Flu!
`--==\\/
.-~~~~-.Y|\\_ Copyright (C) 2009-2013 JJ Cummings
| \ \ _(")
\ /-| ||'--' Rules give me wings!
\_\ \_\\
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Checking latest MD5 for snortrules-snapshot-2960.tar.gz....
They Match
Done!
Checking latest MD5 for community-rules.tar.gz....
They Match
Done!
Checking latest MD5 for opensource.gz....
They Match
Done!
Writing /var/log/snort/sid_changes.log....
Done
No Rule Changes
No IP Blacklist Changes
Done
should there be a change in the rules ?