Feature #7471: detect/ldap: add ldap.bind.name keyword - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #7471

open

Task #7452: ldap: add keywords to match output

detect/ldap: add ldap.bind.name keyword

Added by Philippe Antoine 2 days ago. Updated 2 days ago.

Status:

New

Priority:

Normal

Assignee:

Alice da Silva Akaki

Target version:

TBD

Effort:

Difficulty:

Label:

Description

Which is a buffer

We should also investigate if
pub struct LdapDN(pub String); is right because this means we only accept valid utf-8 strings
when LDAP may accept arbitrary ascii buffer

History
Notes
Property changes

Actions

Copy link

Updated by Juliana Fajardini Reichow 2 days ago

Tracker changed from Task to Feature

Actions

Copy link

Updated by Philippe Antoine 2 days ago

Should we restrict to bind operation or have all operations but look for all LDAPDN ?

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #7471

detect/ldap: add ldap.bind.name keyword

Updated by Juliana Fajardini Reichow 2 days ago

Updated by Philippe Antoine 2 days ago