[Oisf-devel] Does Suricata support openAppId?
Andreas Herz
andi at geekosphere.org
Wed Oct 19 20:57:57 UTC 2016
On 18/10/16 at 17:44, Devanath S wrote:
> Hi *,
>
> Snort/cisco and Palo alto n/ws talk very high about openAppId support. Does
> Suricata support openAppId? or does it have something similar. Please
> suggest.
There was a discussion some time ago:
https://lists.openinfosecfoundation.org/pipermail/oisf-users/2015-January/004498.html
So it might be nice to support it, but IMHO it's not as nice as it
sounds. But if anyone wants to support/add it, contribute it :)
There might be more need for DPI similar support to detect more
applications especially within HTTP traffic.
--
Andreas Herz
More information about the Oisf-devel
mailing list