Actions
Bug #6578
closedssh: no alert on packet with Message Code: New Keys (21)
Affected Versions:
Effort:
Difficulty:
Label:
Description
Cf https://forum.suricata.io/t/can-not-get-ssh-alert/4223/8
Because of ssh parser setting APP_LAYER_PARSER_NO_INSPECTION right away and preventing detection on this packet
Updated by Philippe Antoine 12 months ago
- Status changed from Assigned to In Review
Updated by Philippe Antoine 8 months ago
Current PR https://github.com/OISF/suricata/pull/10540
Updated by Philippe Antoine 8 months ago
- Status changed from In Review to Resolved
Actions