Actions
Feature #1766
openTLS keyword expansion
Effort:
Difficulty:
Label:
Description
Suricata should support more TLS keywords than it currently does. See TLS keyword expansion for more information of what I'm suggesting and add your comments here :)
Updated by Zach Rasmor over 8 years ago
I began a prototype to add the cipher suite to the JSON output - are you already planning to do this?
Updated by Mats Klepsland over 8 years ago
Yeah, this is already planned. The plan is to add custom TLS logging (both for tls-log and json-tls), and then start logging more as more TLS stuff is decoded when more TLS keywords are added. Logging cipher_suite from server_hello is on my todo.
Updated by Zach Rasmor over 7 years ago
Hello Mats - has there been any progress on the expanded logging, or should I resume my prototyping?
Updated by Victor Julien over 5 years ago
- Status changed from New to Assigned
Hi Mats, could you update the wiki doc to indicate what has been implemented?
Updated by Victor Julien over 2 years ago
- Related to Feature #5190: new tls.random keyword added
Actions