Actions
Feature #2319
closedExpose flow lifetime to the rulelanguage
Status:
Rejected
Priority:
Normal
Assignee:
-
Target version:
-
Effort:
Difficulty:
Label:
Beginner, C, Outreachy
Description
During the roadmap discussion in Prague someone asked for the possiblity to detect long lived sessions.
VictorJ said that this data was already stored somewhere.
I guess a sanity check of config for timeouts vs length of duration looked for in the signature would be a good idea
Updated by Victor Julien about 7 years ago
- Related to Task #2309: SuriCon 2017 brainstorm added
Updated by Victor Julien over 6 years ago
Stian are you planning to submit an implementation for this?
Updated by Victor Julien over 6 years ago
- Assignee changed from Stian Bergseth to Anonymous
- Effort set to low
- Difficulty set to low
Updated by Andreas Herz about 5 years ago
- Related to Feature #3271: Add keyword to determine flow based speed/bw added
Updated by Andreas Herz about 5 years ago
- Assignee changed from Community Ticket to Stian Bergseth
Additional ideas we will split into dedicated issues:
Dump the flow table over unix socket.
Explore also loading the flow table into suricata as part of a state keeping.
Updated by Victor Julien over 4 years ago
- Assignee changed from Stian Bergseth to Community Ticket
Updated by Shivani Bhardwaj about 4 years ago
- Effort deleted (
low) - Difficulty deleted (
low) - Label C added
Updated by Victor Julien about 2 years ago
- Is duplicate of Bug #5536: detect: flow.age keyword added
Updated by Victor Julien about 2 years ago
- Status changed from New to Closed
- Assignee deleted (
Community Ticket) - Target version deleted (
TBD)
Closed as duplicate of #5536.
Updated by Victor Julien about 2 years ago
- Status changed from Closed to Rejected
Actions