suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	87e6be610a	Issue warning if libhtp version used is not up to date.	13 years ago
Victor Julien	02e1229565	Enforce flow direction for http_raw_header sigs. Fix unittests that missed the flow direction.	13 years ago
Victor Julien	80fb33c651	Fix libhtp htp_tx_get_response_headers_raw 'detection' for bundled libhtp.	13 years ago
Victor Julien	b0650b9c3b	Update bundled libhtp to 0.2.7.	13 years ago
Victor Julien	5fa195ffb3	Allow log-pcap to use both absolute and relative sguil-base-dir settings when in 'sguil' mode.	13 years ago
Victor Julien	70cdf64fb2	Undo unintended changes to suricata.yaml.	13 years ago
Victor Julien	4cd2938c68	Fix PathIsAbsolute function not dealing with CYGWIN. Handle absolute paths in logfile api.	13 years ago
Victor Julien	7066a79c10	Register HTTP logger at registration, not thread init.	13 years ago
Victor Julien	146ff9d66e	Suppress ac-gfbs debug message being printed at info level.	13 years ago
Victor Julien	cd987ae7a5	Threading: do not keep a slots post_pq locked while processing the packets.	13 years ago
Victor Julien	e81f94cd83	Fix flowbits sigmatch structure added to the match and post-match list, causing corruption of the prev ptr. This lead to an endless loop condition in the thresholding code. Thanks to Chris Wakelin for reporting the issue.	13 years ago
Victor Julien	39ef24ccc4	Fix pcap -i mode.	13 years ago
Victor Julien	ae27333458	Make live worker runmode threads adhere to the 'detect' cpu affinity settings.	13 years ago
Victor Julien	e526525f83	Fix pcap -i <ip>.	13 years ago
Victor Julien	35467db151	Indicate that the Suricata version used is a release or a git checkout.	13 years ago
Victor Julien	28e15be526	Clean up default output. Use simpler output format for releases.	13 years ago
Victor Julien	ff9fb7e1b5	Assume offloading in use if 1/10th of the packets has a bad checksum.	13 years ago
Victor Julien	ea34aeff3d	Add missing Makefile.am files for rules/ and doc/ dir.	13 years ago
Victor Julien	9bea84918c	Fix checksum offloading auto detection typo: it should be 1/5th instead of 1/10th.	13 years ago
Victor Julien	227d6e058c	Make sure new rule and doc files are part of the dist.	13 years ago
Victor Julien	5886ef8249	Don't print error about missing git repo if building from tarball. Don't define REVISION in that case.	13 years ago
Victor Julien	e192ce7ea5	Update ChangeLog to reflect changes between 1.2beta1 and 1.2rc1.	13 years ago
Victor Julien	c4b34e6ef7	Fix various minor clang/scan-build warnings.	13 years ago
Victor Julien	791fc2f6ea	Adapt signature ordering to new flowbits post-match handling.	13 years ago
Victor Julien	8339ca6d4e	Implement post match support for ip-only.	13 years ago
Victor Julien	e69c584317	Let timing out flow use pseudo packets also if state is not fully closed.	13 years ago
Victor Julien	6eeab37ab3	Add post-match list, move flowbits set, etc functions to it. Move flowint set, etc functions to it as well.	13 years ago
Victor Julien	67a4153137	Add export of wiki install docs to our doc/ dir.	13 years ago
Victor Julien	0818a151ec	Add reject support to live single, autofp and workers runmodes.	13 years ago
Eric Leblond	0b2c7dfa5d	runmode: Add Reject to IPS worker mode.	13 years ago
Victor Julien	515d070554	Print elapsed time with millisecond precision.	13 years ago
Victor Julien	aac2d91bcc	Set DROP flag for reject action so in addition to sending the rst, in IPS mode also drop the offending packet.	13 years ago
Victor Julien	f084874998	Fix HTTP state and raw stream not being inspected at the same time. Adds an exception to transaction id handling for HTTP.	13 years ago
Victor Julien	16cfae2f51	Trigger raw stream reassembly on receiving a full HTTP request or response.	13 years ago
Victor Julien	f773942ce0	Disable printing dreaded app layer error messages to the screen: app layer events are here to safe us.	13 years ago
Victor Julien	132d9d1789	Add http-events.rules with an example rule for each HTTP event.	13 years ago
Victor Julien	f713b653ab	Convert error logging for HTTP to use new app layer event API. Expose libhtp warnings to this as well.	13 years ago
Victor Julien	e55390e4e7	Add check to invalidate signatures that inspect raw http headers in the to_client direction (response headers) if libhtp hasn't been patched yet. Also add hack to disable the test for unittests, many tests fail and we'll fix those ASAP.	13 years ago
Victor Julien	1ac6054c23	Clean up configure check for htp_tx_get_response_headers_raw. Misc changes.	13 years ago
Anoop Saldanha	4acd5a04e6	Enable http raw response header inspection only if libhtp supports raw response header buffering which should be available post 0.2.6	13 years ago
Anoop Saldanha	9c4954ff42	support http response raw header inspection + carry out hrhd mpm on both request/response headers + add unittests for the same	13 years ago
Anoop Saldanha	1b434f5fff	hhd unittests for response headers	13 years ago
Anoop Saldanha	e5c3e2cdb1	carry out hhd mpm on both request/response headers	13 years ago
Anoop Saldanha	30247dce8c	bug 389 - support http response header inspection + fix bug with stateful inspection for sigs that would have both request/response inpection	13 years ago
William	7d07b5375e	Add simple socket to gzip file PoC.	13 years ago
Victor Julien	64f717c880	Set 'livedev' in pcap acquisition module for older libpcap version as well. Fixes a segv.	13 years ago
Victor Julien	5a1a443701	Add example smtp decoding events rules file.	13 years ago
Victor Julien	026a4efc57	Make sure that continued stateful detection only inspects sigs in the proper direction.	13 years ago
Victor Julien	21ee59e6f3	Add signature direction (flow:toserver/flow:toclient) as a signature flag.	13 years ago
Victor Julien	d5402d33d4	Simplify detection loop. Inspect packet keywords before the state.	13 years ago

... 3 4 5 6 7 ...

3067 Commits (3b79dac2b746c85e66c1e3eb68ac8db18757f828) All Branches Search

3067 Commits (3b79dac2b746c85e66c1e3eb68ac8db18757f828)

All Branches