Documentation #5088: file.name sticky buffer is not documented - Suricata - Open Information Security Foundation

Actions

Copy link

Documentation #5088

open

Documentation #5182: userguide: better document rule keywords

file.name sticky buffer is not documented

Added by Eloy Pérez over 1 year ago. Updated 10 months ago.

Status:

New

Priority:

Normal

Assignee:

OISF Dev

Target version:

TBD

Affected Versions:

Effort:

Difficulty:

Label:

Description

The file.name sticky buffer is not documented. It should be documented in /rules/file-keywords.html#filename as the code in detect-filename.c points, but only the keyword filename is documented.

Moreover, there should be references to this sticky buffer in all related protocols documentation where is used, in order to be easier a user to find it. The related protocols are:

HTTP
SMTP
FTP
NFS
SMB
HTTP2

History
Property changes

Actions

Copy link

Updated by Juliana Fajardini Reichow 10 months ago

Parent task set to #5182

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries