Bug #5877: stream: connections time out too early - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #5877

closed

stream: connections time out too early

Added by Victor Julien over 1 year ago. Updated over 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Victor Julien

Target version:

7.0.0-rc2

Affected Versions:

Effort:

Difficulty:

Label:

Description

A mismatch between the state of a connection as Suricata sees it and how the hosts see it can lead to cases where Suricata already times a connection out, while the connection isn't yet ready. In IPS mode Suricata can drop the rest of the connection. If midstream is enabled, the final part of the connection may be picked up again.

Subtasks 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #5877

stream: connections time out too early

Updated by Victor Julien over 1 year ago

Updated by OISF Ticketbot over 1 year ago

Updated by OISF Ticketbot over 1 year ago

Updated by Victor Julien over 1 year ago