Project

General

Profile

Actions
Copy link

Task #7863

open

smb: trigger raw stream inspection

Added by Shivani Bhardwaj 6 days ago. Updated 3 days ago.

Status:
Assigned
Priority:
Normal
Assignee:
Shivani Bhardwaj
Target version:
9.0.0-beta1
Effort:
Difficulty:
high
Label:

Description

For application layer protocols over TCP that have transactions, we need to trigger stream inspection once they have at least one full message parseable, to avoid missing alerts that happen early on in the stream (as seen with #7004).

Related issues 1 (1 open0 closed)

Copied from Suricata - Task #7743: http: trigger raw stream inspectionNewShivani BhardwajActions
Actions
Copy link
 #1

Updated by Shivani Bhardwaj 6 days ago

  • Copied from Task #7743: http: trigger raw stream inspection added
Actions
Copy link
 #2

Updated by Shivani Bhardwaj 3 days ago

  • Target version changed from 8.0.1 to 9.0.0-beta1
Actions
Copy link

Also available in: Atom PDF