Re: Not being able to run the Trojan rules in the update script and performance increase SOLUTION
Posted by Roadrunnere42 on Mar 24, 2016; 2:40pm
URL: https://itus.accessinnov.com/Update-script-fw-upgrade-tp43p522.html
Hi Wisiwyg
line 37 is there to sort the existing short rules that are on the shield, so the first time the script is run it will check for a file called /etc/snort/rules/test.file which is not present so will go ahead and sort the snort rules sort -u /etc/snort/rules/snort.rules, it will then write a file to the shield touch /etc/snort/rules/test.file so the next time the script runs the test file will be present and will not sort the existing rules before downloading.
This just checks that there are no duplicate rules in the original snort rules, variable snorted="1" was in there for testing and can be left in, if you know of a better way to do this then please feel free to change as I’m learning scripting, 30 year on windows does make you set in your ways.
roadrunnere42