General

Profile

Travis Green

Issues

Projects

Activity

02/01/2019

08:21 PM Suricata Bug #2798: --engine-analysis is unaware of http_host buffer
Submitted PR. Travis Green
05:50 PM Suricata Bug #2798 (Closed): --engine-analysis is unaware of http_host buffer
Using --engine-analysis flag produces incorrect output for engine analysis:... Travis Green

12/20/2018

01:47 AM Suricata Optimization #2583: document tos keyword
https://github.com/OISF/suricata/pull/3591 Travis Green
01:39 AM Suricata Optimization #2750 (New): document nfs-keywords
src/detect-nfs-procedure.c reference to "nfs-keywords.html#procedure" generates 404
similarly,
src/detect-nfs-...
Travis Green

11/29/2018

10:13 PM Suricata Bug #635: Some keywords missing in list-keyword command
Also tcp-stream
Did not find a place to add to sigmatch_table.
Travis Green

09/12/2018

08:37 PM Suricata Bug #2619 (Assigned): Malformed HTTP causes FN using http_header_names;
In Suricata 4.x, a malformed HTTP request/response can cause FN when using http_header_names;
I have included 2 p...
Travis Green

11/22/2017

09:41 AM Suricata Feature #2287: force lowercase on dns_query buffer
We had a meeting and agreed this buffer should be caseful. This feature request can be closed. Travis Green

11/07/2017

12:24 PM Suricata Bug #2263 (Closed): content matches disregarded when using dns_query on udp traffic
Using Suricata-4.0.x, content matches before dns_query; sticky buffer are disregarded
* FP:
alert dns $HOME_NET a...
Travis Green

08/09/2016

01:20 PM Suricata Bug #1860: 2220005: SURICATA SMTP bdat chunk len exceeded when using SMTP connection caching
add'l notes from Travis:
- connection reuse is also called SMTP connection caching
- is a feature in postfix and se...
Travis Green
01:05 PM Suricata Bug #1860 (Closed): 2220005: SURICATA SMTP bdat chunk len exceeded when using SMTP connection caching
I am seeing many of these at various client sites, and they seem to be FPs. Here is a redacted example of an SMTP co... Travis Green

Also available in: Atom