Task #2879: Log a warning on duplicate SID. - Suricata-Update - Open Information Security Foundation

Actions

Copy link

Task #2879

closed

Log a warning on duplicate SID.

Added by Jason Ish about 5 years ago. Updated over 4 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Vagisha Gupta

Target version:

1.1.0rc1

Effort:

low

Difficulty:

low

Label:

Beginner, Outreachy

Description

Currently when suricata-update encounters a rules with duplicate SIDs, it will silently use the one with the higher revision. While I believe this behaviour is correct, we should still log a warning.

On duplicate SID we should probably log the following as warnings:
- If revisions differ: Found duplicate rule ID %d, keeping one with higher revision.
- If revisions are equals: Found duplicate rule ID %s, keeping existing rule.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata » Suricata-Update

Task #2879

Log a warning on duplicate SID.

Updated by Shivani Bhardwaj about 5 years ago

Updated by Shivani Bhardwaj about 5 years ago

Updated by Andreas Herz almost 5 years ago

Updated by Shivani Bhardwaj almost 5 years ago

Updated by Shivani Bhardwaj almost 5 years ago

Updated by Shivani Bhardwaj almost 5 years ago

Updated by Shivani Bhardwaj over 4 years ago

Updated by Shivani Bhardwaj over 4 years ago

Updated by Jason Ish over 4 years ago

Updated by Jason Ish over 4 years ago