Jason Ish

Looks like we could drop the check for zlib in configure.ac?

> Why ? zlib will still be used in libhtp libhtp has its own check for zlib which in the end results in `suricata` dynamically linking with it anyways.

> Is this related? [OISF/suricata-verify#748](https://github.com/OISF/suricata-verify/pull/748) I tried it, doesn't help. Looks like that S-V test is good for current master tho.

> > Is this related? [OISF/suricata-verify#748](https://github.com/OISF/suricata-verify/pull/748) > > I tried it, doesn't help. Looks like that S-V test is good for current master tho. Actually this is the correct SV...

> Think it would be nice to use the kernel "fixes" mechanic here: > > ``` > $ git fixes 53fc70a > Fixes: 53fc70a9a73c ("protodetect: fix int warnings") > ```...

Enabling GeoIP in the Suricata Docker image is simple enough, however the database that comes with the image is from 2018 due to MaxMind licensing. It will be up to...

After playing around with this for a moment, I'm not sure if the Suricata Docker image should use `--volumes-from geoipupdate` or if the geoipupdate Docker image should use `--volumes-from suricata`....

The Docker images for `latest` and `master` now have GeoIP support compiled in. 2 things to keep in mind: - The databases included in Linux distro are old due to...

This might be something I added to the user interface in EveBox. Adding it directly to the event record for having available in other SIEMs would be the job of...

> @jasonish I think your commit [60ebc27](https://github.com/OISF/suricata/commit/60ebc27c4eb755800e6d3f4ec1a5d55a5230a214) is responsible for this bug. > > For unidirectional transactions, we may run detection on the other side than the transaction. > >...