]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4697351) | patch
eve/http: add request/response http headers 3641/head
authorMaurizio Abba <mabba@lastline.com>
Fri, 3 Aug 2018 13:27:05 +0000 (14:27 +0100)
committerVictor Julien <victor@inliniac.net>
Fri, 8 Feb 2019 09:36:42 +0000 (10:36 +0100)
commit6c0ec0b2f374207411be2d2c68b0ea104cf000fa
tree4187f3e59b4a0b8ad1f496500378ad66b60045f8tree
parent469735118876b2eaec1d4efe5a7af9cf3b1a23cccommit | diff
eve/http: add request/response http headers

Add a keyword configuration dump-all-headers, with allowed values
{both, request, response}, dumping all HTTP headers in the eve-log http
object. Each header is a single object in the list request_headers
(response_headers) with the following notation:

{
    "name": <header name>,
    "value": <header value>
}

To avoid forged malicious headers, the header name size is capped at 256
bytes, the header value size at 2048.

By default, dump-all-headers is disabled.
doc/userguide/output/eve/eve-json-format.rst diff | blob | blame | history
src/output-json-http.c diff | blob | blame | history
suricata.yaml.in diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git