[Oisf-users] Event suppression
Victor Julien
victor at inliniac.net
Tue Apr 5 10:55:58 UTC 2011
On 04/01/2011 06:42 PM, Martin Holste wrote:
> Couldn't find it on Google, so I thought I'd put it to the list:
> what's the easiest (and most scriptable) way to suppress an event in
> Suricata? Can I write to a file and HUP Suricata? This would be for
> FP tuning from a web GUI.
I was just looking at our support for the "suppress" keyword any found
it to be missing. See https://redmine.openinfosecfoundation.org/issues/274
Wrt a HUP, we don't support this yet. It's one of the phase 2 goals though.
Cheers,
Victor
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list