Project

General

Profile

Actions
Copy link

Bug #209

closed
RR VJ

regression v100 and git today cause two (same?) FP

Bug #209: regression v100 and git today cause two (same?) FP

Added by rmkml rmkml almost 16 years ago. Updated almost 16 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Victor Julien
Target version:
1.0.1
Affected Versions:
Effort:
Difficulty:
Label:

Description

Hi,
I have two FP with two sigs on joigned pcap file:
alert udp any any <> any 0 (msg:"BAD-TRAFFIC udp port 0 traffic"; classtype:misc-activity; sid:525; rev:9;)
alert udp any 0 -> 224.0.0.0/4 5353 (msg:"suricata fp"; classtype:bad-unknown; sid:9037079; rev:1;)
Pcap file contains only one packet with IGMP protocol.
Please Check.
Regards
Rmkml

Files

suricatafpigmpmulticastnotudpsrcport0.pcap (104 Bytes) suricatafpigmpmulticastnotudpsrcport0.pcap rmkml rmkml, 07/13/2010 03:35 PM
Actions
Copy link

Also available in: PDF Atom