Feature #843: Custom http logging filter functionality - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #843

closed

Custom http logging filter functionality

Added by Roberto Martelloni almost 11 years ago. Updated 9 months ago.

Status:

Closed

Priority:

Normal

Assignee:

Community Ticket

Target version:

TBD

Effort:

Difficulty:

Label:

Description

I think can be useful to have a blacklist filter functionality to disallow HTTP logging of web sites that match a list of regex on FQDNs.

From my point of view having logs about some web site like for example advertising web sites it's not useful from a security point of view and also it's a waste of hard disk space and computational power.

I thin can be useful to have an external file ( ex: disable_http_logging.sites ) that contains a list of regex ( ex: *.google\.com, .*advertising\.com ) that disallow HTTP logging functionality on matched regexp.

Related issues 1 (1 open — 0 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #843

Custom http logging filter functionality

Updated by Victor Julien over 10 years ago

Updated by Victor Julien over 7 years ago

Updated by Andreas Herz over 7 years ago

Updated by Victor Julien almost 6 years ago

Updated by Victor Julien almost 6 years ago

Updated by Andreas Herz about 5 years ago

Updated by Philippe Antoine 9 months ago

Updated by Philippe Antoine 9 months ago