After six months of development, Cisco has released Snort 2.9.13.0, a free attack detection and prevention system that combines signature matching techniques, protocol inspection tools, and anomaly detection mechanisms.
Main innovations:
- Added support for reloading rules after updating them;
- Implemented a script for adding a package to the black list with a guarantee that a new session will be allowed;
- Supported handling of a new preprocessor warning about incorrect HTTP header ending;
- Changed the calculation of the hash of a file transferred via FTP/HTTP with an offset;
- Fixed an issue with hanging connections with an authentication request in a half-closed state;
- Changed timeout for UDP packets sent to non-standard network ports.
Source: opennet.ru