Bug #6140
closedBug #6109: exception/policy: reject changes flow action in IDS mode
exception/policy: reject changes flow action in IDS mode (6.0.x backport)
Updated by Juliana Fajardini Reichow 11 months ago
- Status changed from Assigned to Rejected
It had escaped me that for 6.0.x we would only apply exception policies in IPS mode. Given that fact, this backport isn't necessary, as of now...
Updated by Juliana Fajardini Reichow 11 months ago
- Related to Feature #5935: ips: add 'master switch' to enable dropping on traffic (handling) exceptions (6.0.x backport) added
Updated by Juliana Fajardini Reichow 11 months ago
When the master switch is backported (https://redmine.openinfosecfoundation.org/issues/5935), this will be relevant again. Should I un-reject it?
Commit with the change: https://github.com/OISF/suricata/commit/0d9289014bd8f65c7100e7173f#diff-dc589ac7f5fdeb0157360264d2fa5a02574ee3359be4841a0a59f333d33e06abL33
Updated by Victor Julien 11 months ago
Juliana Fajardini Reichow wrote in #note-3:
When the master switch is backported (https://redmine.openinfosecfoundation.org/issues/5935), this will be relevant again. Should I un-reject it?
Commit with the change: https://github.com/OISF/suricata/commit/0d9289014bd8f65c7100e7173f#diff-dc589ac7f5fdeb0157360264d2fa5a02574ee3359be4841a0a59f333d33e06abL33
It seems we don't need to track a separate ticket for this if we implement the master switch backport to pass existing tests, right?