Actions
Feature #3086
closed
KK
JI
app_proto for Torrent traffic
Feature #3086:
app_proto for Torrent traffic
Added by Kenneth Kolano over 6 years ago. Updated over 3 years ago.
Effort:
medium
Difficulty:
medium
Label:
Protocol
Description
Currently the app_proto registered for Torrent traffic is "failed". Can the detection be revised to detect Torrent traffic?
It should be identifiable by the payload pre-fix: "d1:ad2:id20:".
AH Updated by Andreas Herz over 6 years ago Actions #1
- Assignee set to Community Ticket
- Target version set to TBD
- Effort set to medium
- Difficulty set to medium
AB Updated by Aaron Bungay over 5 years ago Actions #2
Working on this.
VJ Updated by Victor Julien over 5 years ago Actions #3
- Status changed from New to Assigned
- Assignee changed from Community Ticket to Aaron Bungay
VJ Updated by Victor Julien over 5 years ago Actions #4
Are you doing protocol detection only or a full parser?
VJ Updated by Victor Julien over 5 years ago Actions #5
- Related to Task #4151: Research: New protocol support added
AB Updated by Aaron Bungay over 5 years ago Actions #6
Victor Julien wrote in #note-4:
Are you doing protocol detection only or a full parser?
Doing a full parser in rust for the BitTorrent DHT protocol :)
VJ Updated by Victor Julien over 5 years ago Actions #7
- Target version changed from TBD to 7.0.0-beta1
- Label Protocol added
Great!
AB Updated by Aaron Bungay about 5 years ago Actions #8
VJ Updated by Victor Julien over 3 years ago Actions #9
- Status changed from Assigned to In Review
- Assignee changed from Aaron Bungay to Jason Ish
VJ Updated by Victor Julien over 3 years ago Actions #10
- Subject changed from app_proto for Torrent traffic? to app_proto for Torrent traffic
VJ Updated by Victor Julien over 3 years ago Actions #11
- Target version changed from 7.0.0-beta1 to 7.0.0-rc1
JI Updated by Jason Ish over 3 years ago Actions #12
Latest PR for review: https://github.com/OISF/suricata/pull/7838
JI Updated by Jason Ish over 3 years ago Actions #13
- Status changed from In Review to Closed
Merged to master.
Actions