eve: remove obsolete test

author Philippe Antoine <pantoine@oisf.net>

Tue, 10 Dec 2024 13:42:08 +0000 (14:42 +0100)

committer Victor Julien <victor@inliniac.net>

Tue, 25 Feb 2025 07:16:13 +0000 (08:16 +0100)
author Philippe Antoine <pantoine@oisf.net>
Tue, 10 Dec 2024 13:42:08 +0000 (14:42 +0100)
committer Victor Julien <victor@inliniac.net>
Tue, 25 Feb 2025 07:16:13 +0000 (08:16 +0100)
diff --git a/tests/eve-alert-verbose/suricata.yaml b/tests/eve-alert-verbose/suricata.yaml

deleted file mode 100644 (file)

index 49392f5..0000000
--- a/tests/eve-alert-verbose/suricata.yaml
+++ /dev/null
@@ -1,31 +0,0 @@
-%YAML 1.1
----
-
-outputs:
-  - eve-log:
-      enabled: yes
-      filetype: regular
-      filename: eve.json
-      full-logging-for-alerted-flows: printable
-
-      types:
-        - alert:
-            http-headers: yes
-        - http:
-            extended: yes
-        - dns:
-            query: yes     # enable logging of DNS queries
-            answer: yes    # enable logging of DNS answers
-        - tls:
-            extended: yes     # enable this for extended logging information
-        - files:
-            force-magic: no   # force logging magic on all logged files
-        - smtp:
-        - ssh
-        - stats:
-            totals: yes       # stats for all threads merged together
-            threads: no       # per thread stats
-            deltas: no        # include delta values
-        - flow
-        - netflow
-        - metadata
diff --git a/tests/eve-alert-verbose/test.rules b/tests/eve-alert-verbose/test.rules

deleted file mode 100644 (file)

index 0789cd5..0000000
--- a/tests/eve-alert-verbose/test.rules
+++ /dev/null
@@ -1,5 +0,0 @@
-# Silly rule to set the flowbit "traffic/label/cli-http" on
-# the curl user-agent.
-alert http any any -> any any (msg:"TEST"; \
-      http.user_agent; content:"curl"; \
-      sid:1; rev:1;)
diff --git a/tests/eve-alert-verbose/test.yaml b/tests/eve-alert-verbose/test.yaml

deleted file mode 100644 (file)

index a0aadf0..0000000
--- a/tests/eve-alert-verbose/test.yaml
+++ /dev/null
@@ -1,22 +0,0 @@
-pcap: ../eve-metadata/testmyids.pcap
-
-requires:
-
-  script:
-    - grep "http-headers" suricata.yaml.in > /dev/null
-
-checks:
-
-  - filter:
-      count: 1
-      match:
-        event_type: alert
-        has-key: flow
-        has-key: http.response_headers
-        has-key: http.request_headers
-  - filter:
-      count: 1
-      match:
-        event_type: http
-        has-key: http.response_headers
-        has-key: http.request_headers
author	Philippe Antoine <pantoine@oisf.net>
	Tue, 10 Dec 2024 13:42:08 +0000 (14:42 +0100)
committer	Victor Julien <victor@inliniac.net>
	Tue, 25 Feb 2025 07:16:13 +0000 (08:16 +0100)
tests/eve-alert-verbose/suricata.yaml	[deleted file]	patch \| blob \| blame \| history
tests/eve-alert-verbose/test.rules	[deleted file]	patch \| blob \| blame \| history
tests/eve-alert-verbose/test.yaml	[deleted file]	patch \| blob \| blame \| history