yaml: move classification etc below the rules

suricata.yaml.in

@@ -47,10 +47,6 @@ vars:
 ## Step 2: select the rules to enable or disable
 ##
 
-classification-file: @e_sysconfdir@classification.config
-reference-config-file: @e_sysconfdir@reference.config
-# threshold-file: @e_sysconfdir@threshold.config
-
 default-rule-path: @e_sysconfdir@rules
 rule-files:
  - botcc.rules
@@ -104,6 +100,10 @@ rule-files:
 # - modbus-events.rules  # available in suricata sources under rules dir
 # - app-layer-events.rules  # available in suricata sources under rules dir
 
+classification-file: @e_sysconfdir@classification.config
+reference-config-file: @e_sysconfdir@reference.config
+# threshold-file: @e_sysconfdir@threshold.config
+
 
 ##
 ## Step 3: select outputs to enable