Task #6953: tracking: supply chain risks - Suricata-Update - Open Information Security Foundation

Actions

Copy link

Task #6953

open

tracking: supply chain risks

Added by Victor Julien 7 months ago. Updated 7 months ago.

Status:

New

Priority:

Normal

Assignee:

Jason Ish

Target version:

TBD

Effort:

Difficulty:

Label:

Description

Consider supply chain risks when downloading and managing potentially untrusted rule sources.

Possible issues:
- Very large downloads consuming tmp space of space in /var/lib. Also consider we are seeing datasets being published over 150MB in size now and likely to grow
- Zip bombs

Suricata-Update does not exec anything it downloads. It does, however, execute Suricata once for --build-info, and then again executes Suricata in test mode with the new data.

History
Property changes

Actions

Copy link

Updated by Jason Ish 7 months ago

Description updated (diff)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata » Suricata-Update

Task #6953

tracking: supply chain risks

Updated by Jason Ish 7 months ago