Security Onion 20111028 is now available! This resolves Issue 135 by updating the NSM scripts to start Snort with the AFPACKET DAQ for higher performance. For more information about the AFPACKET DAQ, please see:http://manual.snort.org/node7.html
Existing Security Onion users can perform an in-place upgrade using the following command (if you're behind a proxy, remember to set your proxy variables as described in the FAQ):
sudo -i "curl -L http://sourceforge.net/projects/security-onion/files/security-onion-upgrade.sh > ~/security-onion-upgrade.sh && bash ~/security-onion-upgrade.sh"