          MODULE=snort
           MAJOR=2.9
         VERSION=$MAJOR.2.3
          SOURCE=$MODULE-$VERSION.tar.gz
         SOURCE2=snortrules-snapshot-2922.tar.gz
   SOURCE_URL[1]=$MIRROR_URL
  SOURCE2_URL[0]=$MIRROR_URL
      SOURCE_VFY=sha1:f2ba349f3be9410b2fee2a84b3a3405d25960d0c
     SOURCE2_VFY=sha1:f24876873deaaf1f6a2b82ab00b6ac7eb8f3074c
        WEB_SITE=http://www.snort.org
         ENTERED=20011022
         UPDATED=20120518
           SHORT="Lightweight network intrustion detection program"

cat << EOF
Snort is a lightweight network intrusion detection system, capable
of performing real-time traffic analysis and packet logging on IP
networks. It can perform protocol analysis, content searching/matching
and can be used to detect a variety of attacks and probes, such as
buffer overflows, stealth port scans, CGI attacks, SMB probes, OS
fingerprinting attempts, and much more. Snort uses a flexible rule
based language to describe traffic that it should collect or pass, and
a modular detection engine. Snort has a real-time alerting capability,
with alert mechanisms for syslog, a user specified file, a UNIX socket,
or WinPopup messages to Windows clients using Samba's smbclient.

WARNING: the rules can only be downloaded by subscribers, or 30 days
after release by registered users. You may need to download manually.
EOF
