Adoptable Cookbooks List

Looking for a cookbook to adopt? You can now see a list of cookbooks available for adoption!
List of Adoptable Cookbooks

Supermarket Belongs to the Community

Supermarket belongs to the community. While Chef has the responsibility to keep it running and be stewards of its functionality, what it does and how it works is driven by the community. The chef/supermarket repository will continue to be where development of the Supermarket application takes place. Come be part of shaping the direction of Supermarket by opening issues and pull requests or by joining us on the Chef Mailing List.

Select Badges

Select Supported Platforms

Select Status


snort (19) Versions 2.1.0

Installs Snort IDS packages

cookbook 'snort', '= 2.1.0', :supermarket
cookbook 'snort', '= 2.1.0'
knife supermarket install snort
knife supermarket download snort
Quality 71%

snort Cookbook

Cookbook Version

Installs the SNORT IDS daemon. On Debian/Ubuntu systems, the packages
from apt are used. On RHEL and Fedora systems, the packages are
retrieved directly from the SNORT project site.



  • Ubuntu 10.04+
  • RHEL/CentOS, 7.0 and higher only.
  • Fedora 21+

May work on other platforms in the Debian and RHEL families with or
without modification.


  • Chef 12+


  • compat_resource to bring custom_resource functionality to chef-client < 12.5


See attributes/default.rb for default values.

  • node['snort']['home_net'] - Address range to use for preseeding HOME_NET.
  • node['snort']['database'] - The database backend to use. Only applicable on Debian/Ubuntu systems. Default none. MySQL and PostgreSQL are usable. The default recipe will install the SNORT package for the appropriate database backend. You'll need to make sure that the database server is set up in some way such that SNORT can connect to it. This cookbook does not yet support automatic configuration.
  • node['snort']['rpm']['daq_version'] - The full version string of the daq package to install, e.g. "2.0.0-1.fc17".
  • node['snort']['rpm']['daq_checksum'] - The SHA256 checksum of the daq rpm.
  • node['snort']['rpm']['version'] - The full version string of the snort package to install, e.g., "2.9.4-1.f17".
  • node['snort']['rpm']['checksum'] - The SHA256 checksum of the snort rpm.



Includes the _install.rb and _service.rb recipes


Installs the snort package from apt on Debian based systems, or RPMs downloaded from the site on RHEL based systems


Used the snort_service custom resource to start and enable the snort service




  • service_name: To override the platform based service_name used to start/enable the service pass a string here


snort_service 'snort' do
  action :start
snort_service 'snort' do
  action [:start, :enable]


Include recipe[snort] in a run list to have the system get SNORT
installed and the service started. This performs a baseline installation and preseeds the
package. You should change the node['snort']['home_net'] attribute
to the appropriate network.

We recommend adding a template resource to the default recipe to
manage the /etc/snort/snort.conf file as a template. The default
file is good enough for now on Debian/Ubuntu.

On Ubuntu/Debian, the default rules package will be installed. You'll
need to download and install additional rules. Automatically updating
rules with oinkmaster is not yet supported. See future plans.

Future Plans

The following features are planned for a future release of this
cookbook. Contributions welcome.
- Service management
- Config management
- Additional platforms


License & Authors

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
See the License for the specific language governing permissions and
limitations under the License.

Dependent cookbooks

compat_resource >= 12.9.0

Contingent cookbooks

There are no cookbooks that are contingent upon this one.

snort Cookbook CHANGELOG

This file is used to list changes made in each version of the snort cookbook.


  • Update the versions to the latest snort on RHEL/Fedora
  • Require at least compat_resource 12.9 to prevent random issues
  • Remove Chef 11 compatibility from the metadata file
  • Use kitchen-dokken in Travis CI


  • Added new snort_service custom resource and a _service.rb recipe. The recipe is called by the default.rb recipe. The custom resource can be used to write wrapper cookbooks and supports the standard service actions (enable, start, restart, reload). The custom resource used the new Chef 12.5 customer resource format and the compat_resource cookbook for compatibility with 12.0+


  • Updated to the latest daq and snort packages for RHEL
  • Added Chefspecs for RHEL/Debian platforms
  • Moved all install logic into _install.rb recipe which is called by the default recipe. This changes nothing, but prepares things for adding more functionality at a later date.
  • Updated platforms in the Kitchen CI config
  • Added source_url and issues_url metadata for Supermarket
  • Updated Travis config to test via ChefDK and to use kitchen-docker for integration tests
  • Removed yum cookbook from the Berksfile since it wasn't needed
  • Removed the Contributing doc since it was from when this cookbook was managed by Chef Software Inc.
  • Added standard Chef development gems to the Gemfile
  • Removed references to database output from the Readme
  • Added a Rakefile for simplified testing


  • Updated to the latest Snort packages on RHEL / Fedora. For RHEL the minimum supported release is now RHEL 7 due to Snort requirements
  • The default package action is now install and not upgrade to prevent service restarts on Chef runs
  • Switched to platform_family to support all Debian / RHEL derivitives
  • Switch file/dir mode declarations to strings to preserve the leading 0s
  • Updated the Contributing doc to reflect the new process
  • Added a chef ignore file to prevent unecessary files on the Chef server
  • Added a rubocop file and resolved all Rubocop warnings
  • Added a Test Kitchen config for testing supported platforms
  • Added a Gemfile with development dependencies
  • Added a Berksfile for development dependencies


  • [COOK-1512] - Update SNORT cookbook with upstream changes for RHEL platforms

Collaborator Number Metric

2.1.0 passed this metric

Contributing File Metric

2.1.0 passed this metric

Foodcritic Metric

2.1.0 passed this metric

License Metric

2.1.0 passed this metric

No Binaries Metric

2.1.0 passed this metric

Testing File Metric

2.1.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of, and your repo must contain a file

Version Tag Metric

2.1.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of, and your repo must include a tag that matches this cookbook version number