suricata-verify icon indicating copy to clipboard operation
suricata-verify copied to clipboard

Published 20 hours ago verified publisher icon OISF

tests: update ips-state-1 test - v4

Open jufajardini opened this issue 2 months ago • 2 comments

This test indicated that there were FP drops for http and that another check was failing, but currently the are no more FP for HTTP. Updated the checks to reflect this. flow.action still not set to drop with the tls drops...

Related to Bug #6976

Previous PR: #1781

Changes from last PR:

  • rebased
  • added ticket reference
  • add lt-version for checks specific to 6.0.x, as the number of generated alerts for TLS is different - not sure if this is expected, or another bug. I seem to remember some work around packets done by Philippe which I imagine could impact this, but can't recall more than this...

Ticket

Redmine ticket: https://redmine.openinfosecfoundation.org/issues/6976

jufajardini avatar Apr 22 '24 19:04 jufajardini