Project

General

Profile

Actions

Feature #249

open

Configure host-os-policy from a file, like snorts host_attribute.xml

Added by Edward Fjellskål about 14 years ago. Updated almost 6 years ago.

Status:
New
Priority:
Normal
Target version:
Effort:
Difficulty:
Label:

Description

To be able to automate the configuration of frag and stream policy,
I propose that it is possible to read such info of IP and OS from a file.

It might be simple:
192.168.10.123|linux
192.168.10.124|vista
10.10.200.1|bsd

Or one could look at snorts host_attribute table.
Info on IP<->OS can be fetched from an inventory DB or Hooger and PRADS etc.

(
http://code.google.com/p/hogger/
https://github.com/gamelinux/prads/
)


Related issues 2 (1 open1 closed)

Related to Suricata - Feature #2277: netinfo: structured information about the network. Output hierarchical network tree in events NewEric LeblondActions
Related to Suricata - Feature #660: Update host policy from unix socketRejectedActions
Actions

Also available in: Atom PDF