ERROR: ByteExtract Variable ‘bugtraq’ in rule… Snort

A known issue occurs when running snort 2.9.1 with the slightly older rules (2905) that causes the error

ByteExtract variable

Fatal Error, Quitting.

wpid-teamviewer-2011-11-15-13-262.png

You can see what version of snort you are running by typing in

<code>

Snort -V

</code>

(Note that is a capital V)

wpid-1____teamviewer-2011-11-15-13-262.png

Solution:

Download the latest snort rules. Note* the newest rules are at the bottom.

2911.tar.gz is the newest at the time of this writing.

wpid-littlesnapper-2011-11-15-13-262.png

Advertisements

About spuder
spuder is a "super computer" support engineer by day, and tinkerer / hobbyist by night.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: