Update pkg/README to change the Snort ruleset download URL from HTTP to

HTTPS to protect the oinkcode from being exposed (suggested by David Hill). Also add a note that registered users without a paid subscription are only allowed to download the official Snort ruleset once every 15 minutes (suggested by Adam Jeanguenat). This restriction is not obvious on the snort.org site, so I think this note would be helpful to users. OK Markus Lude (maintainer), sthen@
2013-03-04 04:23:18 +00:00 · 2013-03-04 04:23:18 +00:00 · defa405c2c
commit defa405c2c
parent 80fe824e3f
2 changed files with 7 additions and 3 deletions
--- a/net/snort/Makefile
+++ b/net/snort/Makefile
@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.73 2013/01/16 04:52:53 lteo Exp $
+# $OpenBSD: Makefile,v 1.74 2013/03/04 04:23:18 lteo Exp $

 SHARED_ONLY =		Yes

@ -7,6 +7,7 @@ COMMENT =		highly flexible sniffer/NIDS
 VERSION =		2.9.4.0
 DISTNAME =		snort-2.9.4
 PKGNAME =		snort-${VERSION}
+REVISION =		0

 CATEGORIES =		net security

--- a/net/snort/pkg/README
+++ b/net/snort/pkg/README
@ -1,4 +1,4 @@
-$OpenBSD: README,v 1.2 2012/10/11 02:40:48 lteo Exp $
+$OpenBSD: README,v 1.3 2013/03/04 04:23:18 lteo Exp $

 +-----------------------------------------------------------------------
 | Running ${FULLPKGNAME} on OpenBSD
@ -29,9 +29,12 @@ to the correct directory:
 * Official Snort rules (replace <oinkcode> with yours):

    ftp -o snortrules-snapshot-${V}.tar.gz \
-        http://www.snort.org/reg-rules/snortrules-snapshot-${V}.tar.gz/<oinkcode>
+        https://www.snort.org/reg-rules/snortrules-snapshot-${V}.tar.gz/<oinkcode>
    tar -C /etc/snort -xzf snortrules-snapshot-${V}.tar.gz rules preproc_rules

+  Note that registered users without a paid subscription are only
+  allowed to download the official Snort ruleset once every 15 minutes.
+
 * Emerging Threats rules:

    ftp http://rules.emergingthreats.net/open/snort-2.9.0/emerging.rules.tar.gz