[Oisf-users] Warnings reported by suricata v5.x

James Moe jimoe at sohnen-moe.com
Tue Apr 14 18:27:51 UTC 2020


Suricata v5.0.2
suricata-update version 1.1.1

Since v5.0.0 warnings typical of those below are emitted whenever the ruleset is
loaded; there are 10 tota. Also listed is a bonus set of warnings about
duplicate IDs.

What do I do to correct the SC_ERR_UNKNOWN_VALUE cause?


14/4/2020 -- 07:19:17 - <Warning> -- [ERRCODE: SC_ERR_UNKNOWN_VALUE(129)] -
signature at /usr/local/var/lib/suricata/rules/suricata.rules:5895 uses unknown
classtype: "external-ip-check", using default priority 3. This message won't be
shown again for this classtype
14/4/2020 -- 07:19:18 - <Warning> -- [ERRCODE: SC_ERR_UNKNOWN_VALUE(129)] -
signature at /usr/local/var/lib/suricata/rules/suricata.rules:11361 uses unknown
classtype: "domain-c2", using default priority 3. This message won't be shown
again for this classtype

14/4/2020 -- 07:19:08 - <Warning> -- Found duplicate rule SID 2200067, keeping
the rule with greater revision.
14/4/2020 -- 07:19:08 - <Warning> -- Found duplicate rule SID 2200074, keeping
the rule with greater revision.
14/4/2020 -- 07:19:08 - <Warning> -- Found duplicate rule SID 2012887 with same
revision, keeping the first rule seen.
14/4/2020 -- 07:19:08 - <Warning> -- Found duplicate rule SID 2006380 with same
revision, keeping the first rule seen.


-- 
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
Think.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20200414/7bad9c8c/attachment.sig>


More information about the Oisf-users mailing list