Project

General

Profile

Actions
Copy link

Bug #4439

closed
EL EL

eve: log alert direction

Bug #4439: eve: log alert direction

Added by Eric Leblond almost 5 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Eric Leblond
Target version:
7.0.0-beta1
Affected Versions:
Effort:
Difficulty:
Label:

Description

If the alert event contains the flow information it is not possible to know which from the source or the destination IP is the client for the flow.

EL Updated by Eric Leblond almost 5 years ago Actions
Copy link
 #1

  • Status changed from New to In Review

OJ Updated by Odin Jenseg almost 5 years ago Actions
Copy link
 #2

Hi Eric,

I think this also would make sense to include this type of information for the event_type=fileinfo, since a fileinfo event can be triggered in both direction.

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #3

  • Status changed from In Review to Closed
  • Target version set to 7.0.0-beta1

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #4

  • Subject changed from Log data way in alert to eve: log alert direction
Actions
Copy link

Also available in: PDF Atom