mateodx / pulledpork

Automatically exported from code.google.com/p/pulledpork
GNU General Public License v2.0
0 stars 0 forks source link

Problems parsing rules files with colons #162

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1.Trying to parse rules file from 
https://sslbl.abuse.ch/blacklist/sslblacklist.rules to generate sid-msg.map 
doesn't works due to problems with colons
2.Removing colons from msg field, it doesn't works also.
3.

What is the expected output? What do you see instead?

Expected output:
902200755 || SSL Fingerprint Blacklist: Malicious SSL certificate detected 
(KINS C&C)

Actual output:
902200755 ||

What version of the product are you using? On what operating system?

Pulledpork 0.7.0 under CentOS 6.5 x86_64 (fully patched)

Please provide any additional information below.

Original issue reported on code.google.com by carlopm...@gmail.com on 13 Oct 2014 at 12:56