Feature #3203: manage classification.config - Suricata-Update - Open Information Security Foundation

Actions

Copy link

Feature #3203

closed

manage classification.config

Added by Victor Julien about 5 years ago. Updated about 4 years ago.

Status:

Closed

Priority:

High

Assignee:

Shivani Bhardwaj

Target version:

1.2.0rc1

Effort:

Difficulty:

Label:

Description

To enable rulesets to introduce new classtypes, and to allow multiple rulesets to co-exist, Suricata-Update should manage classification.config.

It should take the local one (/etc/suricata/classification.config) plus any that is part of the rulesets and merge them.
Since Suricata ships some rules, it should also include one we ship, so /usr/share/suricata/...

The resulting file should go somewhere in /var/lib/suricata/

(side note: we should probably do the same for reference.config)

In case of conflicting definitions, it should probably take the highest priority/severity.

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata » Suricata-Update

Feature #3203

manage classification.config

Updated by Victor Julien about 5 years ago

Updated by Shivani Bhardwaj about 5 years ago

Updated by Shivani Bhardwaj about 5 years ago

Updated by Shivani Bhardwaj about 5 years ago

Updated by Shivani Bhardwaj about 5 years ago

Updated by Jason Ish almost 5 years ago

Updated by Jason Ish almost 5 years ago

Updated by Jason Ish almost 5 years ago

Updated by Jason Ish almost 5 years ago

Updated by Shivani Bhardwaj over 4 years ago

Updated by Jason Ish over 4 years ago

Updated by Jason Ish about 4 years ago