Philippe Vogel wrote:
I do not even know if snort OpenSource is really useful, or if you need to buy the fully uptodate ruleset subscription to make it useful. If the latter is true, then snort.org should offer the packages. Snort works perfect with downloaded rules (database driven with acid), even if you are forced to customise your config file(s). For your own desires you have to kill some rules if you don't like to get false positives or unimportant ids-warnings.
An software author who distributes sources is not forced to offer pre-compiled binaries. In case of SuSE you don't find any binaries (maybe a few) offered from authors pages for up-to-date distributions. Instead you are forced to compile your own binaries or download from compiled sources with unknow file integrity.
I guess Marcus' argument was meant to apply if snort is of no use w/o a commercial subscription then the company/people behind the commercial version should take care of distributing their software. Noone forces them to do it but then noone gets their software. But since you state it's still useful in its "free" flavour I guess it's still of interest to have it distributed within openSUSE.
Notice: Any download not coming from the author of a software might contain _arbitrary_ (or any) code!
That's no argument if you decide to pay the snort vendor for their service since you have to trust them anyway in that case. It's finally a security application. Wolfgang --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org