aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,299 Commits
10 Branches
167 Tags
188 MiB
main
main-7.0.x
main-8.0.x
dev-7.0.15/v1
dev-8.0.4/v1
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.3
suricata-7.0.14
suricata-8.0.2
suricata-7.0.13
suricata-8.0.1
suricata-7.0.12
suricata-8.0.0
suricata-7.0.11
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '0ca09ecbcd'
${ noResults }
Commit Graph

582 Commits (0ca09ecbcd1d67106f45abfce2e03f185382e2a7)

Author SHA1 Message Date
Juliana Fajardini fff9d529b7 exceptions: add reject support to exception policy 
This enables the usage of 'reject' as an exception policy. As for both
IPS and IDS modes the intended result of sending a reject packet is to
reject the related flow, this will effectively mean setting the reject
action to the packet that triggered the exception condition, and then
dropping the associated flow.

Task #5503

(cherry picked from commit bbd968c738)
 3 years ago
Juliana Fajardini ac67593a0e userguide: briefly introduce exception policy opts 
Added them in the configuration section so folks can be more aware of
them, while a more complete documentation isn't around.

Related to
Task #5475

(cherry picked from commit ef54f36e34)
 3 years ago
Juliana Fajardini 374e4879a1 userguide: update defrag settings options 
We were still mentioning that there were only three options.

(cherry picked from commit 3c74e443bd)
 3 years ago
Juliana Fajardini 6f360471e3 userguide: add section about HTTP2 settings 
This was in master but not in 60x yet.
 3 years ago
Juliana Fajardini 06091e0fc6 userguide: merge sections about AppLayer Parsers 
We had two sections under the suricata.yaml configuration section
describing settings for application layer parsers. This merges them into
one and also fixes a few subsection title levels.

Task #5364

(cherry picked from commit 0cc040cf61)
 3 years ago
Shivani Bhardwaj 8762699edf doc/conf: fix sphinx language setting 
sphinx-build 5.1.1 and above throws a warning which is treated as an
error while building.

Invalid configuration value found: 'language = None'. Update your configuration to a valid language code. Falling back to 'en' (English).

(cherry picked from commit 2c4d6b33ae)
 3 years ago
Juliana Fajardini 47243c0839 userguide: dynamically determine copyright date 
This uses the date of doc generation to determine the copyright date
for the trailing date. Based on Jeff Lucovsky solution.

(cherry picked from commit e0c8dba7ac)
 4 years ago
Juliana Fajardini 4f9c600bed userguide: explain alert queue behavior and stats 
Added sections along packet-alert-max config section explaining
packet alert queue overflow (when Suri reaches packet alert max), when
alerts are discarded etc.

Since from the user perspective it shouldn't matter how we process the
alert queue, the term "replace" is used, even though there's not exactly
a replacing action happening, with the queue bein pre-processed before
being appended to the Packet.

Also described the associated stats and added an explanation on when to
change packet-alert-max.

Task #5178

(cherry picked from commit 1956dc3d5d)
 4 years ago
Juliana Fajardini 9a1a439bd6 doc/userguide: explain packet-alert-max config 
Task #4207

(cherry picked from commit 49542d0f1b)
 4 years ago
Jason Ish 746f0236f5 doc/userguide: document ftp max-line-length 
(cherry picked from commit 7d6bc60abb)
 4 years ago
Victor Julien 6e5b7199cf doc/smb: add resource limits section 
(cherry picked from commit 976748b777)
 4 years ago
Jeff Lucovsky 1306dbf268 doc/yaml: Signal-termination option description 
(cherry picked from commit 93842aa14a)
 4 years ago
Shivani Bhardwaj 0e9f42c744 doc/xbits: clarify noalert usage 4 years ago
Jeff Lucovsky 00ab84fd63 doc: Describe per-thread stack size config setting 
Issue: 4550

This commit documents the new per-thread stack-size setting. Some
systems have a small default value that is not suitable for Suricata's
multi-threaded architecture and adjustment may be required.

(cherry picked from commit 117e11b0ae)
 4 years ago
Shivani Bhardwaj 45745ed2ea doc: add usage of flowbits OR op 
Ticket 5130

(cherry picked from commit 015c9fe1e3)
 4 years ago
Odin Jenseg 89f453f7e7 doc/eve-json-format/dns: Describing Z-bit 
(cherry picked from commit 2a5d79e426)
 4 years ago
Juliana Fajardini 30b1e221ce doc/lua-functions: add sha items to SCFileInfo doc 
(cherry picked from commit 751906b71d)
 4 years ago
Philippe Antoine 590e917e94 http2: document HTTP1 keywords enabling 
For HTTP signatures to match on HTTP2 traffic if configure
option app-layer.protocols.http2.http1-rules is enabled
 4 years ago
Philippe Antoine b96f9c0dd5 doc: update sphinx api to use add_css_file 
instead of deprecated add_stylesheet

(cherry picked from commit 95f225e8fb)
 5 years ago
Jason Ish 029e3114b8 doc/quickstart: use new test url that works 
Replace http://testmyids.org with http://testmynids.org/uid/index.html,
as testmyids.org now always redirects to https.

(cherry picked from commit 560974b2db)
 5 years ago
Josh Stroschein 0eaa64aad5 doc: update installation documentation for CentOS and Fedora 
(cherry picked from commit 7ece0ac31f)
 5 years ago
Philippe Antoine eb2a5587fb http: makes decompression time limit configurable 
(cherry picked from commit a04b5566a6)
 5 years ago
Jeff Lucovsky 95df464ba8 doc/lua: Lua API name consistency 
This commit updates the documentation of the SCFlow* function names
available to Lua scripts.

Formerly, they used the prefix "Sc"; now they use "SC".

(cherry picked from commit 25e9483168)
 5 years ago
Victor Julien 0ad5a38fb4 ci: buildbot is decommissioned, so remove prscript refs 
(cherry picked from commit 372fc26739)
 5 years ago
Sascha Steinbiss 773545e6d9 doc: build all manpages 
(cherry picked from commit f78f444a5e)
 5 years ago
Kirby Kuehl 2a8571b3f4 doc: fix URL for unix-socket python example 
(cherry picked from commit 5499a6f7cd)
 5 years ago
Philippe Antoine 096dce4bba http2: allow filestore to work with HTTP2 5 years ago
Philippe Antoine 4e242645be doc: explicit header normalization further 
And their concatenation as described in RFC 2616
 5 years ago
Philippe Antoine 6b30890de9 doc: http.uri.raw has no spaces 
as they are in the protocol

cf bug #2881
 5 years ago
Victor Julien 7b4ac8dbab doc/userguide: update http keywords 5 years ago
Victor Julien ca47d75c80 doc/userguide: explain --strict-rule-keywords 5 years ago
Jeff Lucovsky a18a9d3046 doc: New sticky buffer icmpv4.hdr 5 years ago
Phil Young 76de981574 napatech: Added comment indicating that hba will be deprecated 
HBA will be deprecated in Suricata 7
 5 years ago
Jason Ish 3030a3da18 doc: provide eve 1 deprecation date 5 years ago
Victor Julien c95850c6ce doc/rules: document config rule option 5 years ago
Jeff Lucovsky 6f9b7e052a doc/eve: Update threaded filename examples 5 years ago
Jason Ish f70e1f571e doc/userguide: add info about --set and lists 5 years ago
Jason Ish 69fffb2dc4 doc/userguide: include man page even when not including pdf 
Fix a mistake in Makefile.am where the man page was only being
added to the distribution if the PDF was also created. It should
be included even if the PDF cannot be included.
 5 years ago
Shivani Bhardwaj 87617b200c doc/datasets: add info about memcap and hashsize 5 years ago
Jason Ish 7d44e80a50 doc: document removal of unified2 
And suggest an alternate tool, Meer if compatibility with
Barnyard2 style databases is required.

Redmine ticket:
https://redmine.openinfosecfoundation.org/issues/3497
 5 years ago
Jason Ish e71f2b22fa doc: add removal of individual json loggers 
Add link to multiple eve instances as a replacement for this
feature.
 5 years ago
Philippe Antoine 9b5c923327 http: disables lzma by default for HTTP 5 years ago
Victor Julien e1ecb7dc41 doc/datasets: explain reloads, general improvements 5 years ago
Simon Dugas 48da18b081 doc: dns - document additional fields in eve event 
Documentation of additional fields for soa and sshfp. Also some minor
doc fixes and updates.
 5 years ago
Jeff Lucovsky 06f41f608c doc: Improve grammar, spelling and clarifications 
This commit improves the overall documentation's grammar, spelling, and
adds clarifications  where needed.
 5 years ago
jason taylor b21160a6e3 doc: http.host keyword note for matching on port 
Signed-off-by: jason taylor <jtfas90@gmail.com>
 5 years ago
Roland Fischer de7c7eeff0 doc: Add dev code-style 6 years ago
Odin Jenseg 4549505418 doc/userguide: fix outdated xdp info 6 years ago
Philippe Antoine 999af4f62a http2: adds documentation 6 years ago
James Dutrisac 8d5e54c046 pcap: recusively reading pcaps / documentation 
Changes to doc/userguide/partials/options.rst for feature 2363
   (reading pcaps recursively)
 6 years ago