Project

General

Profile

Actions
Copy link

Feature #8425

closed
JI JI

ntp: add ntp transaction logging

Feature #8425: ntp: add ntp transaction logging

Added by Jason Ish about 2 months ago. Updated 28 days ago.

Status:
Closed
Priority:
Normal
Assignee:
Jason Ish
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

NTP is missing a transaction logger. Due to the chattiness of NTP it should probably be disabled by default. The main use case would be for adding NTP metadata to an alert.

Related issues 5 (0 open5 closed)

Related to Suricata - Feature #8429: rules: add ntp.mode keywordClosedJason IshActions
Related to Suricata - Feature #8430: rules: add ntp.version keywordClosedJason IshActions
Related to Suricata - Feature #8431: rules: add ntp.stratum keywordClosedJason IshActions
Related to Suricata - Feature #8394: firewall: support NTP hook states for firewall rule evaluationClosedJason IshActions
Related to Suricata - Feature #8488: ntp: use a buffer for reference id, not a u32ClosedJason IshActions
Actions
Copy link

Also available in: PDF Atom