General

Profile

Andreas Herz

Issues

Projects

Activity

10/29/2018

09:47 PM Suricata-Update Optimization #2645: Fix deprecation warnings in tests.
You meant legacy python :)?
Do we have a plan how long we want to support 2.7? 2020 will come fast

10/20/2018

09:33 PM Suricata Bug #2636: I need help fort IPS inline doesn't drop
Do you see alerts at least?
Did you change the action keyword from alert to drop?
09:31 PM Suricata Support #2635: Multi-threading not working correctly
Can you give us more details about your setup, especially configuration and how you run suricata (commandline)?

09/19/2018

09:08 PM Suricata Optimization #2620: Documentation: tagged_packets / event_type packet
We need to add it to the keywords section as well to the EVE (JSON Format) section.
Suggested example rule:...

08/22/2018

09:23 PM Suricata Optimization #595: document csum keywords
should include
- ipv4-csum ...
09:22 PM Suricata Optimization #2591: document ssh keywords
should include:
* ssh_proto
* ssh.protoversion
* ssh_software
* ssh.softwareversion
09:20 PM Suricata Optimization #2602 (New): add keywords to --list-keywords output
Missing keywords from `suricata --list-keywords`:
* startswith
* tls_cert_fingerprint
* ftpdata_command
09:18 PM Suricata Optimization #2601 (Closed): document strip_whitespace keyword
09:18 PM Suricata Optimization #2600 (Closed): document bypass keyword
09:18 PM Suricata Optimization #2599 (New): document base64 keywords
should include:
* base64_decode
* base64_data

Also available in: Atom