[Oisf-users] (no subject)
Cooper F. Nelson
cnelson at ucsd.edu
Mon Mar 24 17:15:27 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yeah I would definitely suggest doing a full update of your sensor,
reboot your server, recompile the Intel driver module and build a 2.0
series suricata.
I've been running the 2.0dev series for the last year and don't really
have much experience with the prior releases. I also know that libhtp
and the file extraction code (among other things) has had a major
overhaul.
- -Coop
On 3/24/2014 9:59 AM, Travel Factory S.r.l. wrote:
> On Mon, 24 Mar 2014 09:53:08 -0700
> "Cooper F. Nelson" <cnelson at ucsd.edu> wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> That's not right at all. What kernel revision are you running? I know
>> to get the RSS+AF_PACKET+mmap mode working well you need a fairly recent
>> kernel.
>
>
> Linux suricata2 3.2.0-38-generic #61-Ubuntu
>
> I can update kernel with no problems.
>
> I now also have the last driver over an older kernel...
>
> I'm starting to read the new guide, I may find new informations.
>
- --
Cooper Nelson
Network Security Analyst
UCSD ACT Security Team
cnelson at ucsd.edu x41042
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQEcBAEBAgAGBQJTMGgvAAoJEKIFRYQsa8FWF/MH/jxghfYUtpEYtzLR26um777L
dFrmqmjcFZB35nIRcqU1DUYhHRE+3dPk81jQQ18lrpfXHo2QDthFuK+12FMhGpdx
kIVHlwCOXk8ENxjlfgNvSaye3Gfjq4BlbJATb72pmB0qP7hNu8N3YQZfysMlzGOM
4LouzNVmci37RHacIgPme46jStgwDj1gAlZuvwgajSfp1+v4nmlyM4I5I9ZHBIEJ
qRlWduT5gE+q505dALQnrAJ4he+N42OWh7V9nwDa2vl2CCYtubaB0TdjG3AuR0c3
6gdQHCVQFyQGhoQsuY4K3+F4PYDhMbQGB7VBmtInLlhkvJgf3TnKF+3DMjgxzyk=
=Xa1G
-----END PGP SIGNATURE-----
More information about the Oisf-users
mailing list