网络入侵检测系统,Suricata 1.4 beta1 发布
jopen 12年前
<div id="p_fullcontent" class="detail"> <p><a href="/misc/goto?guid=4958195937250259370" target="_blank">Suricata </a>1.4 发布首个 Beta 测试版本,主要改进包括:</p> <ul> <li>添加AF_PACKET IPS模式支持. </li> <li>添加自定义HTTP日志 </li> <li>添加TLS cert日志,存储,和指纹匹配 </li> <li>添加各种通道协议解码支持<span class="truncate_more"> </span></li> <li><span class="truncate_more">NFQ fail-open support was added. </span></li> <li><span class="truncate_more">A rule option for limiting inspection to IPv4 or IPv6 was added. </span></li> <li><span class="truncate_more">The filesize keyword was added. </span></li> <li><span class="truncate_more">Delayed detection engine initialization support was added. </span></li> <li><span class="truncate_more">Various performance improvements were made</span></li> </ul> <p>Suricata 是一个网络入侵检测和阻止引擎,由开放信息安全基金会以及它所支持的提供商说开发。该引擎是多线程的,内置 IPv6 的支持,可加载预设规则,支持 Barnyard 和 Barnyard2 工具。</p> <p><img alt="网络入侵检测系统,Suricata 1.4 beta1 发布" src="https://simg.open-open.com/show/5c820e06e84ba4e23f8fe414942a3cfd.png" width="450" height="484" /></p> </div> <br />