Hi,

I've been a bit concerned because there have been no updates from Snort 2.8, Snort Community Current, and BleedingSnort in a few weeks.  (I was expecting at least a signature update by now).  Can anyone confirm if there have been no signature changes for a while?

When I go to 'Update Policies' it downloads, checks the policy, then is finished and I close out.  Typically after a few weeks there are some changes I can enable or disable.

Maybe this is normal...but we have another snort-based device that has received updated rules a few times since then.  25 rules on the 28th it looks like.  I'm not certain the source on tha one though.

Thanks.

Yeah...I recall changing that at some point: http://www.emergingthreats.net/bleeding.rules.tar.gz

There are no errors downloading that I can see...I just would have thought an update to something such as RBN or malware would have happened in the last few weeks.  Normally my Stillsecure updates are close to the emergingthreats updates and I know it downloaded a bunch recently.

Thanks.

Well, that's interesting.  The domain doesn't even return in a lookup from our DNS or a web-based DNS lookup.

I'm not sure that's been the case previously but it seems emergingthreats doesn't currently exist (or has DNS issues).

I had the same ET path as you did and I also noticed the updates stopped awhile ago. I had to add in /rules/ as well. I guess they changed something.

Yes, the are hosted on ThePlanet. According to incidents.org, they had two servers in different data centers, but when ThePlanet bought EV1, ThePlanet moved their second server into the same data center. <sigh>

Ray