|
It's been a while since we set up a number of the mechanisms that folks use to track the rulesets. In the process of rebuilding I've been reminded of many of these, and think it's worth better documenting. For the GUI rule managers a while ago we put up a rev file for each of the major rulesets. This is incremented up one every time an aupdate happens. The available version counters are: Major rev for the Mainstream Ruleset http://www.emergingthreats.net/version.txt Shadowserver Bot Active C&C Rules: http://www.emergingthreats.net/CCrev Compromised Hosts Rules: http://www.emergingthreats.net/COMPrev Spamhaus DROP Listed Hosts Rules: http://www.emergingthreats.net/DROPrev Firewall Rules based on above lists: http://www.emergingthreats.net/FWrev and RBN (Russian Business Network) Rulesets: http://www.emergingthreats.net/RBNrev These all update generally without fail. If you want to grab these to compare rather than grab an entire ruleset to check for change you'll save CPU cycles. Suggestions as to other ways to make update info available are very welcome! |
