doc/lua-detection: update note to mention rules are enabled by default

author Jason Ish <jason.ish@oisf.net>

Mon, 28 Jul 2025 20:11:53 +0000 (14:11 -0600)

committer Jason Ish <jason.ish@oisf.net>

Fri, 1 Aug 2025 16:54:18 +0000 (10:54 -0600)
author Jason Ish <jason.ish@oisf.net>
Mon, 28 Jul 2025 20:11:53 +0000 (14:11 -0600)
committer Jason Ish <jason.ish@oisf.net>
Fri, 1 Aug 2025 16:54:18 +0000 (10:54 -0600)
diff --git a/doc/userguide/rules/lua-detection.rst b/doc/userguide/rules/lua-detection.rst

index 14f4f2ffb534a21e6603581e1c4d503f7a2fbe29..5f58e5b0658b65cec580f9ec440d1c364ff7a48f 100644 (file)
--- a/doc/userguide/rules/lua-detection.rst
+++ b/doc/userguide/rules/lua-detection.rst
@@ -8,9 +8,8 @@ There are 2 ways that Lua can be used with detection. These are
  * ``lua`` rule keyword.
  * ``luaxform`` transform.
  
-.. note:: Lua is disabled by default for use in rules, it must be
-          enabled in the configuration file. See the ``security.lua``
-          section of ``suricata.yaml`` and enable ``allow-rules``.
+.. note:: As of Suricata 8.0, Lua rules are enabled by default and run
+          in a sandboxed environment. See :ref:`lua-sandbox`.
  
  Lua Rule Keyword
  ----------------
@@ -110,6 +109,8 @@ Lua Transform: ``luaxform``
  
  More details in :ref:`lua-transform`.
  
+.. _lua-sandbox:
+
  Lua Sandbox and Available functions
  -----------------------------------
author	Jason Ish <jason.ish@oisf.net>
	Mon, 28 Jul 2025 20:11:53 +0000 (14:11 -0600)
committer	Jason Ish <jason.ish@oisf.net>
	Fri, 1 Aug 2025 16:54:18 +0000 (10:54 -0600)