Port details on branch 2022Q2 |
- snort Lightweight network intrusion detection system
- 2.9.20_2 security =133 2.9.20_1Version of this port present on the latest quarterly branch.
- Maintainer: dvl@FreeBSD.org
- Port Added: unknown
- Last Update: 2024-03-21 20:22:59
- Commit Hash: 0d69cb6
- People watching this port, also watch:: nmap, sudo, wget, freetype2
- License: GPLv2
- WWW:
- https://www.snort.org/
- Description:
- Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules based logging
and can perform content searching/matching in addition to being used to detect
a variety of other attacks and probes, such as buffer overflows, stealth port
scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting
capability, with alerts being sent to syslog, a separate "alert" file, or even
to a Windows computer via Samba.
Packets are logged in their decoded form to directories which are generated
based upon the IP address of the remote peer. This allows Snort to be used as
a sort of "poor man's intrusion detection system" if you specify what traffic
you want to record and what to let through.
For instance, I use it to record traffic of interest to the six computers in
my office at work while I'm away on travel or gone for the weekend. It's
also nice for debugging network code since it shows you most of the Important
Stuff(TM) about your packets (as I see it anyway). The code is pretty easy
to modify to provide more complete packet decoding, so feel free to make
suggestions.
- ¦ ¦ ¦ ¦
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- Conflicts:
- CONFLICTS_INSTALL:
- Conflicts Matches:
-
There are no Conflicts Matches for this port. This is usually an error.
- To install the port:
- cd /usr/ports/security/snort/ && make install clean
- To add the package, run one of these commands:
- pkg install security/snort
- pkg install snort
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: snort
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1654711419
SHA256 (snort-2.9.20.tar.gz) = 29400e13f53b1831e0b8b10ec1224a1cbaa6dc1533a5322a20dd80bb84b4981c
SIZE (snort-2.9.20.tar.gz) = 7009894
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- daq>=2.2.2_3 : net/daq
- bison : devel/bison
- Runtime dependencies:
-
- daq>=2.2.2_3 : net/daq
- barnyard2 : security/barnyard2
- pulledpork.pl : security/pulledpork
- Library dependencies:
-
- libpcre.so : devel/pcre
- libdnet.so : net/libdnet
- libpcap.so : net/libpcap
- This port is required by:
- for Run
-
- security/snort2pfcd
Configuration Options:
- ===> The following configuration options are available for snort-2.9.20_2:
APPID=off: Build with application id support (EXPERIMENTAL)
DOCS=on: Build and/or install documentation
FILEINSPECT=off: Build with extended file inspection features (EXPERIMENTAL)
GRE=on: GRE support
HA=off: Enable high-availability state sharing (EXPERIMENTAL)
IPV6=on: IPv6 in snort.conf
LRGPCAP=off: Pcaps larger than 2GB
NONETHER=off: Non-Ethernet Decoders
NORMALIZER=on: Normalizer
PERFPROFILE=on: Performance profiling
SOURCEFIRE=on: Sourcefire recommended build options
====> Depend on 3rd party addons
BARNYARD=on: Depend on barnyard2 (supports also snortsam)
PULLEDPORK=on: Depend on pulledpork
====> Developer options
DBGSNORT=off: Enable debugging symbols
COREDUMPS=off: Enable core dumps
===> Use 'make config' to modify these settings
- Options name:
- security_snort
- USES:
- bison cpe libtool pathfix shebangfix ssl
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|