Jason Ish

  • Email: ish@unx.ca
  • Registered on: 11/09/2009
  • Last connection: 04/16/2015

Projects

Activity

Reported issues: 9

04/16/2015

04:56 PM Suricata Revision 1f9d9256: spelling - dubbed -> duped (for duplicate)
04:54 PM Suricata Revision 8911b040: DetectGidSet - safer stripping of quotes.
Discovered by AFL when using a rule like:
alert tcp any any -> any any (content:"ABC"; gid:";)
resulting a negati...
04:34 PM Suricata Revision da88b3b7: DetectSidSetup - safer stripping of quotes.
Discovered by AFL when using a rule like:
alert tcp any any -> any any (content:"ABC"; sid:";)
would result in a ...
12:44 PM Suricata Revision ca60d8c3: ParseSizeString - don't abort on unknown unit type.

04/13/2015

12:20 PM Suricata Bug #1416: request feature: urilen <> inclusive please
Note that if this is merged in, the urilen documentation will need to be updated that it is inclusive.
https://red...
12:12 PM Suricata Bug #1416 (Resolved): request feature: urilen <> inclusive please
PR: https://github.com/inliniac/suricata/pull/1417
On a second read of the Snort urilen documentation I noticed:
...
12:12 PM Suricata Bug #1416 (Resolved): request feature: urilen <> inclusive please
PR: https://github.com/inliniac/suricata/pull/1417
On a second read of the Snort urilen documentation I noticed:
...
11:52 AM Suricata Bug #1416 (Assigned): request feature: urilen <> inclusive please

04/07/2015

10:50 AM Suricata Bug #1416: request feature: urilen <> inclusive please
From the Snort documentation, it sounds like Snort may be in error here: http://manual.snort.org/node388.html
@rmk...
03:59 AM Suricata Revision 3b827fd6: Duplicate rule ID.

Also available in: Atom