General

Profile

Antti Tönkyrä

Issues

Projects

Activity

10/05/2016

03:33 AM Suricata Bug #1911 (New): Commandline provided configuration values don't persist after initial startup
When using --set key=value commandline arguments to set some configuration parameters on startup, it seems that those...

08/27/2015

03:36 AM Suricata Feature #1535 (Closed): Expose the certificate itself in TLS-lua
Current development version of TLS-lua only exposes certificate metadata to lua scripts.
I propose a feature where...

07/23/2015

09:05 AM Suricata Feature #1514 (Closed): SSH softwareversion regex should allow colon
Trojaned PuTTY builds have become more common recently, one method to catch some of them is to look for the version s...

03/30/2015

09:39 AM Suricata Bug #1435: EVE-Log alert payload option loses data
And here's the output section regarding EVE-log...
08:00 AM Suricata Bug #1435 (Closed): EVE-Log alert payload option loses data
It would seem that EVE-Log alert payload loses data before/during payload->base64 conversion. Below is an excerpt fro...

03/19/2015

12:26 PM Suricata Bug #1424: DNS EVE-log produces answers with incorrect direction
Also happens with 60a4965
12:18 PM Suricata Bug #1424: DNS EVE-log produces answers with incorrect direction
And version info:
2.1dev (rev e250040)
12:15 PM Suricata Bug #1424: DNS EVE-log produces answers with incorrect direction
Note that normal suricata eve-log input is encapsulated in data key in my example out.
12:14 PM Suricata Bug #1424 (Closed): DNS EVE-log produces answers with incorrect direction
EVE-Log sometimes produces DNS answers with incorrect direction (the server appears to be the dest when it should act...

09/30/2014

05:17 AM Suricata Bug #1292 (Closed): Disabling VLAN tracking should affect cluster mode tuple selection
I was testing a case where mismatched VLAN tags caused flow tracking problems so I set vlan: use-for-tracking: false....

Also available in: Atom