Gnomad
Great work on the updated scripts.
I'm have trouble running updaterules.sh, which is on a fresh image installed yesterday, had a look through and I must admit it's better code than what i did, nice a clean.
1. Ll2blacklist file is not present so script need to check if present if not create folder and files.
Replacing /etc/snort/rules/iplists/L2.blacklist
mv: can't rename '/etc/snort/rules/iplists/L2.blacklist': No such file or directory
mv: can't rename 'L2.blacklist': No such file or directory
2. ./updaterules.sh: line 66: file: not found. Again I think this is to do with folder / files not present on fresh install
Downloading community-rules
https://www.snort.org/downloads/community/community-rules.tar.gz % Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 467 0 467 0 0 812 0 --:--:-- --:--:-- --:--:-- 1212
100 321k 100 321k 0 0 190k 0 0:00:01 0:00:01 --:--:-- 400k
. /updaterules.sh: line 66: file: not found
Downloading abuse-sslbl.rules
https://sslbl.abuse.ch/blacklist/sslipblacklist.rules % Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 21127 100 21127 0 0 36425 0 --:--:-- --:--:-- --:--:-- 88768
./updaterules.sh: line 66: file: not found
3. Don't thing this is anything to do with your script but anyidea. I don't have the profile directory present, has this been added lately.
Restarting SNORT service
cat: can't open '/etc/snort/profile/config1_advanced.conf': No such file or directory
cat: can't open '/etc/snort/profile/config2_engine.conf': No such file or directory
cat: can't open '/etc/snort/profile/config3_preprocessors.conf': No such file or directory
cat: can't open '/etc/snort/profile/config4_other.conf': No such file or directory