• Content count

  • Joined

  • Last visited

  1. I have followed your excellent tutorials and installed WinIDS with MySQL, Barnyard2 and Pulled Pork. Before I got Pulled Pork installed, I had lots of alerts, but after applying it, I haven't seen any new alerts since last thing on Friday. I hope that is a good thing!. To keep the rules up to date, do I create a Schedule Task to run a batch file with: rd d:\winids\snort-old /S /Q xcopy /E /I d:\winids\snort d:\winids\snort-old perl d:\winids\pulledpork\ -c d:\winids\pulledpork\etc\pulledpork.conf -T net stop snort & net start snort Perhaps once per day?