Task #6953: tracking: supply chain risks - Suricata-Update - Open Information Security Foundation

Actions

Copy link

Task #6953

open

tracking: supply chain risks

Added by Victor Julien 17 days ago. Updated 17 days ago.

Status:

New

Priority:

Normal

Assignee:

Jason Ish

Target version:

TBD

Effort:

Difficulty:

Label:

Description

Consider supply chain risks when downloading and managing potentially untrusted rule sources.

Possible issues:
- Very large downloads consuming tmp space of space in /var/lib. Also consider we are seeing datasets being published over 150MB in size now and likely to grow
- Zip bombs

Suricata-Update does not exec anything it downloads. It does, however, execute Suricata once for --build-info, and then again executes Suricata in test mode with the new data.

History
Property changes

Actions

Copy link

Updated by Jason Ish 17 days ago

Description updated (diff)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata » Suricata-Update

Task #6953

tracking: supply chain risks

Updated by Jason Ish 17 days ago