Eric Leblond

> Interesting issue. I feel this should be restrictive in our CI, but I see that outside of our CI it should not be. Should it be the suricata-verify test...

I've worked on matching IPs in Suricata (see https://github.com/OISF/suricata/pull/7560) with dataset allowing usage of IP IOC. Current implementation consists in 2 sets types, one for IPv4, one for IPv6. I'm...

Do you have one Scirius CE by probe ? What we do in our commercial product (Scirius Security Platform) is to have on Scirius per multiple probes. If going commercial...

Thanks @d1eg0v ! Just updated the doc fixing migrate and adding createsuperuser.

The patch 7e3fcb9a5336593ea73ea758505e9635db2ba98c is adding user login and logout info in the user action. I don't know if it is enough for you.

Does you suricata.yaml only reference scirius.rules ? If not you may have some other rules loaded. Another possiblity is that a suricata rules update/restart is needed.

Just after the `manage.py migrate` you need to add a call to `manage.py collectstatic`. If scirius is correctly setup it should help.

Hi @Sc0th, How are you running scirius (fcgi, gunicorn) ?

You should try to set ``` fastcgi_read_timeout 300s; ``` below `fastcgi_pass` in `/etc/nginx/sites-enabled/stamus.conf`  And then restart nginx.

This means that you did already import a source containing similar rules. Maybe you have imported open ruleset from Snort or something alike. Try to delete the other source and...