Snort/Emerging Threats rulesets



  • I have a question about Snort and Emerging Threats rulesets found under the "Categories" heading. If there are dozens of rulesets available (clicking the check boxes next to the corresponding ruleset), does it make sense to check all of them for better detection? If not, why? If ten rulesets are good, aren't fifty even "better"?

    One more question I'm sure JamesDean can answer: Is it possible to integrate a "Check All" box so each ruleset doesn't have to be selected individually?



  • Nice to here from you Roodawakening

    I'll add a disable all rules or enable all rules button.
    Where should I add it.

    I would like some ideas.

    James

    @Roodawakening:

    I have a question about Snort and Emerging Threats rulesets found under the "Categories" heading. If there are dozens of rulesets available (clicking the check boxes next to the corresponding ruleset), does it make sense to check all of them for better detection? If not, why? If ten rulesets are good, aren't fifty even "better"?

    One more question I'm sure JamesDean can answer: Is it possible to integrate a "Check All" box so each ruleset doesn't have to be selected individually?



  • How about something like this?

    Oh…and I noticed a minor typo on the Snort interfaces page:



  • Nice one ;)



  • Good idea adding.

    @Roodawakening:

    How about something like this?

    Oh…and I noticed a minor typo on the Snort interfaces page:


Log in to reply