How to use VRT Edge Rulepack with PP

[Simone]

Hi everyone

thank for your PP :-)

I am using pulledpork with VRT edge rulepack, follow a description from Sourcefire (hxxp://www.snort.org/snort-rules/cli (bottom) ):

Edge Rulepack
You can now stay on the cutting edge of rulepacks by setting <filename>, in any of the above recipes, equal to snortrules-snapshot-edge.tar.gz
This will pull down the latest versioned rulepack that you are privileged to have! e.g. if 2912, 2930 and 2931 are available, it will access 2931.

This rulepack is named snortrules-snapshot-edge.tar.gz

To use that I simple modify PP (svn version):

$ diff /usr/local/bin/pulledpork.pl src/pulledpork-read-only/pulledpork.pl

1813c1813
<                 unless ( $rule_file =~ /snortrules-snapshot-\w+\.tar\.gz/
---
>                 unless ( $rule_file =~ /snortrules-snapshot-\d{4}\.tar\.gz/
1822c1822
<                     $rule_file = "snortrules-snapshot-$Snortv.tar.gz" unless $rule_file =~ /snortrules-snapshot-edge\.tar\.gz/;
---
>                     $rule_file = "snortrules-snapshot-$Snortv.tar.gz";

Perl isn't my favorite script language ;-), sorry
Is it possible include this in a next release?

Thank you in advance

See you

Simone

[JJC]

It is, please submit a feature request at the site for me?

--
You received this message because you are subscribed to the Google Groups "pulledpork users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pulledpork-use...@googlegroups.com.
To post to this group, send email to pulledpo...@googlegroups.com.
Visit this group at http://groups.google.com/group/pulledpork-users.
For more options, visit https://groups.google.com/groups/opt_out.