[Oisf-users] Properly testing Suricata for alerts

[Andreas Herz]

On 18/02/19 at 17:13, 419telegraph298 at protonmail.com wrote:
> and yeah I added the auto update rule files as the rule files in the
> config. Should I be running "-s signatures.rules" when I run from
> command line as well? Because I can't locate the signatures.rules
> anywhere

What does your config say about "default-rule-path:"?
You can look in /var/lib/suricata/rules/ for the file.

-- 
Andreas Herz