Language Selection

English French German Italian Portuguese Spanish

Sourcefire's Roesch pledges long, open-source life for Snort

Filed under
Software

Many users in the Snort community are interested in the Check Point acquisition. What's happened since the acquisition?

Roesch: Well, the fact that we're going to have more resources at our fingertips to continue to advance Snort. More people in research, developers, QA people, [and] the quality of the technology should continue to improve more rapidly. We have a lot of ideas as far as where detection technology needs to go to remain relevant. I don't think the end-all, be-all of detection technology is deep-packet inspection. I think that that's one approach, but it ignores a whole lot of problems that aren't going to be ignored by the bad guys forever. We're working hard to combat those kinds of problems and bring people more effective, powerful analysis technology. So the Snort community should be thrilled because we're going to pour a lot of interesting ideas and hard work into this technology that they're still going to benefit from.

There's a lot of skepticism from the Snort users right now because they're in wait-and-see mode, so we need to prove to them that we mean it when we say Snort's going to get a lot better. We're not going to try to close it or anything like that. Once they see how much benefiting, they're going to be really happy.

Full Interview.

More in Tux Machines

Yet another GTK+ update

GTK+ 3.20 was released a while ago; we’re up to 3.20.3 now. As I tried to explain in earlier posts here and here, this was a pretty active development cycle for GTK+. We landed a lot of of new stuff, and many things have changed. I’m using the neutral term changed here for a reason. How you view changes depends a lot on your perspective. Us, who implemented the changes, are of course convinced that they are great improvements. Others who maintain GTK+ themes or applications may have a different take, since changes often imply that they have to do work to adapt. Read more

Linux Kernel 3.4.112 LTS Has Many PowerPC, x86, HFS, and HFS+ Improvements

A couple of days ago, kernel developer Zefan Li released the one hundred twelfth maintenance build of the long-term supported Linux 3.4 kernel series for stable GNU/Linux users. Read more

Gentoo-Based Sabayon 16.05 Linux OS Switches to the Latest Linux 4.5 Kernel

Earlier today, April 29, 2016, the developers of the Gentoo-based Sabayon Linux operating system have announced the release of the respin ISO images for the month of May of 2016. Read more

Octa-core Cortex-A53 hacker SBC sells for $60

FriendlyARM’s $60, open spec “NanoPC-T3” SBC runs Android or Linux on an octa-core Cortex-A53 SoC packed with wireless and media interfaces, plus 8GB eMMC. The over-caffeinated board builders at Guangzhou, China-based FriendlyARM have shipped their highest-end hacker board yet. The NanoPC-T3 is almost identical to the NanoPC-T2 board, but swaps out the quad-core, Cortex-A9 Samsung S5P4418 SoC for a layout-compatible S5P6818 with eight Cortex-A53 cores that can be clocked dynamically from 400MHz to 1.4GHz. Last month, FriendlyARM’ unveiled an $11, quad-core NanoPi M1 single board computer with similarly open source hardware and Android and Linux software. Read more