Enhancement #3162
pulledpork drop policy should reflect snort policy
| Status: | CLOSED | Start date: | ||
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 100% | |
| Category: | nethserver-pulledpork | |||
| Target version: | v6.6 | |||
| Resolution: | NEEDINFO: | No |
Description
When updating snort policy, dropsid.conf should be updated according to the selected policy.
Associated revisions
Add dropsid.conf template and expand on snort policy update. Refs #3162
Merge branch 'b3162'. Refs #3162
History
#1
Updated by Filippo Carletti about 6 years ago
- Status changed from NEW to TRIAGED
- Assignee set to Filippo Carletti
- % Done changed from 0 to 20
#2
Updated by Filippo Carletti about 6 years ago
- Category set to nethserver-pulledpork
- Status changed from TRIAGED to ON_DEV
- % Done changed from 20 to 30
#3
Updated by Filippo Carletti about 6 years ago
- Status changed from ON_DEV to MODIFIED
- % Done changed from 30 to 60
Test case:
after update, select a new policy in the IPS page and count the drop rules:
grep ^drop /etc/snort/rules/snort.rules | wc -l
Using the connectivity policy only a few rules are enabled, while in security policy the rules count is high (751 today).
#4
Updated by Giacomo Sanchietti about 6 years ago
- Status changed from MODIFIED to ON_QA
- Assignee deleted (
Filippo Carletti) - % Done changed from 60 to 70
Package in nethserver-testing:
- nethserver-pulledpork-1.0.0-1.5.gef797d3.ns6.noarch.rpm
#5
Updated by Giacomo Sanchietti about 6 years ago
- Assignee set to Giacomo Sanchietti
#6
Updated by Giacomo Sanchietti about 6 years ago
- Status changed from ON_QA to VERIFIED
- Assignee deleted (
Giacomo Sanchietti) - % Done changed from 70 to 90
Verified in expert mode and all other levels.
#7
Updated by Giacomo Sanchietti about 6 years ago
- Status changed from VERIFIED to CLOSED
- % Done changed from 90 to 100
Released in nethserver-updates:
- nethserver-pulledpork-1.0.1-1.ns6.noarch.rpm