Antonin Bas
- Login: antonin.bas@gmail.com
- Registered on: 02/02/2023
- Last sign in: 12/12/2024
Issues
open | closed | Total | |
---|---|---|---|
Assigned issues | 0 | 0 | 0 |
Reported issues | 1 | 2 | 3 |
Activity
12/12/2024
- 12:34 AM Suricata Bug #7454 (New): Inconsistent behavior for ftp rules
- I am trying to allow FTP traffic only for a tenant. My (limited) understanding is that the following rules should do ...
08/27/2024
- 08:15 PM Suricata Bug #7199: detect: missing app-layer metadata in alerts
- @catenacyber We need a "catch-all" default reject rule for all the IP traffic that is not covered by the protocol-spe...
- 06:36 PM Suricata Bug #7199: detect: missing app-layer metadata in alerts
- Thanks for the replies.
@catenacyber Changing the rule to an http rule and adding the `dsize: >0` matcher didn't c...
08/06/2024
- 09:55 PM Suricata Bug #7199: detect: missing app-layer metadata in alerts
- Sorry for the additional update.
My guess is that because there is no match on any http attribute, the alert doesn't ... - 08:54 PM Suricata Bug #7199: detect: missing app-layer metadata in alerts
- I changed the action from "reject" to "alert" in my rule, and the behavior is the same: no app-layer (http) metadata ...
- 02:48 AM Suricata Bug #7199 (Closed): detect: missing app-layer metadata in alerts
- After upgrading from Suricata 6 to 7, alerts in the eve JSON output no longer seem to include app-layer metadata.
Th...
02/02/2023
- 10:10 PM Suricata Bug #5847: ppa:oisf/suricata-6.0 broken for arm64
- Thanks for the quick action.
I can confirm that the issue was been resolved.
I am not able to close this issue myse... - 09:24 PM Suricata Bug #5847 (Closed): ppa:oisf/suricata-6.0 broken for arm64
- The ppa:oisf/suricata-6.0 repository is currently broken for the arm64 architecture. It was updated recently and that...
Also available in: Atom