[Oisf-devel] RFC: DNS app layer and logging (WIP)
Victor Julien
victor at inliniac.net
Fri Jun 28 09:01:48 UTC 2013
On 05/02/2013 05:40 PM, Peter Manev wrote:
>>> Updated branch:
>>> https://github.com/inliniac/suricata/tree/dev-dns-parser-v1.4
>>>
>>> https://github.com/inliniac/suricata/commit/3722631091883f7396a88cbdb8ef72dbaac164ff
>>> adds the core engine support for TX based decoder events.
>>>
>>
>> As a suggestion it would be better if we pushed dns out once we get
>> the tx fix work in. Mainly for 2 reasons -
>>
>> 1. Much easier to rebase dns work over tx work, than the other way round.
>> 2. You can fine tune the dns parser + detection, keeping in mind the tx design.
>>
> Sounds reasonable to me.
> When do you gentlemen think (in general) that we could push out a
> stable dns parser ?
The DNS parser and logger have now been pushed into master.
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-devel
mailing list