Open Information Security Foundation

03/21/2025

09:45 PM Suricata Feature #7012 (Closed): Add dns.response sticky buffer

Jason Ish

05:09 PM Suricata Optimization #4798 (In Review): af-packet: default to tpacket-v3 in IDS mode

https://github.com/OISF/suricata/pull/12810
Jason Ish

05:06 PM Suricata Bug #7255: Cannot run suricata-update on a FIPS compliant server

The check was like this as Python 3.6.8 didn't have @usedforsecurity@ when tested. Nor does stock 3.6.15, but it appe... Jason Ish

03:25 PM Suricata Bug #7255: Cannot run suricata-update on a FIPS compliant server

Can you please show us the error you get when you run default @suricata-update@? Does adding @-f@ help at all? Jason Ish

03/18/2025

09:31 PM Suricata Optimization #7617 (Assigned): af-packet: set defrag based on passive or inline mode

By default, with no cluster-type setting, or with cluster-type flow, af-packet will enable defrag, even in IPS mode.
... Jason Ish

03/13/2025

10:13 PM Suricata Task #7602 (In Review): lua: turn dns into lib

PR: https://github.com/OISF/suricata/pull/12768 Jason Ish

09:37 PM Suricata Bug #7570: af-xdp: build failure on Ubuntu 24.10

In @source-af-xdp.c@ we have:... Jason Ish

09:12 PM Suricata Bug #5871: ips/af-packet: doesn't work between 2 virtio devices

Tony Robinson wrote in #note-2:
> Hey Fellas.
>
> I ran into this issue some time ago as well.
>
> https://for... Jason Ish

09:09 PM Suricata Optimization #7564 (Rejected): af-packet: default to tpacket-v3 in IDS mode (7.0.x backport)

We won't be defaulting to tpacket-v3 in 7.0.9. Jason Ish

03/11/2025

06:31 PM Suricata Optimization #4753 (Assigned): lua: fix inconsistency in the init "needs" key

As discussed, returning a table here can still make sense.
Make it consistent between output and rules. Jason Ish