Actions
Feature #5665
closed
PA
PA
rules: bidirectional transaction matching
Feature #5665:
rules: bidirectional transaction matching
Effort:
Difficulty:
Label:
Description
As a HTTP1 rule with uri and response code
PA Updated by Philippe Antoine over 3 years ago
- Related to Task #5488: Suricon 2022 brainstorm added
VJ Updated by Victor Julien over 3 years ago
- Related to Feature #2280: http: rules that match both request and response added
VJ Updated by Victor Julien over 3 years ago
- Subject changed from Bidirectional transaction matching to rules: bidirectional transaction matching
PA Updated by Philippe Antoine over 2 years ago
- Related to Feature #4321: http2: Support link between packets in the same stream added
PA Updated by Philippe Antoine over 2 years ago
- Related to Task #6443: Suricon 2023 brainstorm added
PA Updated by Philippe Antoine over 2 years ago
- Related to Feature #5664: "Scope" bits should have an expiration added
PA Updated by Philippe Antoine over 2 years ago
Difficulty is file.data buffer is streamed and not retained.
Most keywords like http.uri should be easier...
PA Updated by Philippe Antoine over 2 years ago
- Assignee changed from OISF Dev to Philippe Antoine
Trying thinking about it
PA Updated by Philippe Antoine over 2 years ago
- Status changed from New to In Progress
PA Updated by Philippe Antoine over 2 years ago
- Target version changed from TBD to 8.0.0-beta1
PA Updated by Philippe Antoine about 2 years ago
- Status changed from In Progress to In Review
PA Updated by Philippe Antoine about 2 years ago
- Status changed from In Review to In Progress
Today's status : https://github.com/OISF/suricata/pull/10252
Try to lift off the limitations
PA Updated by Philippe Antoine about 2 years ago
- Status changed from In Progress to In Review
https://github.com/OISF/suricata/pull/10506
POC is good enough...
Rounds of reviews to expect...
And the feature for delaying prefiltering on the toclient direction... may come with this ticket or a next one...
VJ Updated by Victor Julien almost 2 years ago
- Blocks Story #7124: rules: improve rule language added
VJ Updated by Victor Julien almost 2 years ago
- Subtask #2280 added
PA Updated by Philippe Antoine over 1 year ago
- Related to Bug #7357: filestore keyword option seems not to work added
PA Updated by Philippe Antoine about 1 year ago
- Status changed from In Review to Resolved
PA Updated by Philippe Antoine about 1 year ago
- Status changed from Resolved to Closed
PA Updated by Philippe Antoine about 1 year ago
- Related to Bug #7665: transaction rules: support filesize added
Actions