What steps will reproduce the problem?
1.Trying to parse rules file from
https://sslbl.abuse.ch/blacklist/sslblacklist.rules to generate sid-msg.map
doesn't works due to problems with colons
2.Removing colons from msg field, it doesn't works also.
3.
What is the expected output? What do you see instead?
Expected output:
902200755 || SSL Fingerprint Blacklist: Malicious SSL certificate detected
(KINS C&C)
Actual output:
902200755 ||
What version of the product are you using? On what operating system?
Pulledpork 0.7.0 under CentOS 6.5 x86_64 (fully patched)
Please provide any additional information below.
Original issue reported on code.google.com by carlopm...@gmail.com on 13 Oct 2014 at 12:56
Original issue reported on code.google.com by
carlopm...@gmail.comon 13 Oct 2014 at 12:56