Built: about 8 years ago
Size: 83.9 KB
Home page: http://oinkmaster.sourceforge.net
Summary: Automated updating of Snort IDS rules
Oinkmaster is simple Perl script released under the BSD license that
helps you keep your Snort rules current with little or no user
interaction. It has quite a few useful features regarding rules
management, such as ability to enable, disable and modify specified
rules after each update. It will tell you the exact changes from your
previous rules, so you have total control of what's going on.
It may be useful in conjunction with any program that can use Snort
rules, like Snort (doh!) or Prelude-NIDS.
Oinkmaster is most often used to grab the latest official rules tarball
from www.snort.org and apply a set of modifications to them (such as
disabling unwanted ones), but it can just as well be used to manage
your local rules and also third party rules and distribute them to
multiple sensors with ability to fine-tune the rules on each sensor or
group of sensors. Oinkmaster is designed to integrate well with other
scripts and you can easily setup a very powerful rules management system.
See the FAQ for hints and suggestions.
List of contributors:
- spec cleanup.
- use config(noreplace) for oinkmaster.conf.
- don't package cron.daily script.
- initial build for ALTLinux