Merge in SNORT/snort3 from ~PRBG/snort3:doc_update_help_and_usage to master
Squashed commit of the following:
commit
f6293a0d79293afa35d44555c1abb2175b3b120f
Author: Priyanka Gurudev <prbg@cisco.com>
Date: Thu May 12 12:15:35 2022 -0400
doc: update clone link in README. Thanks to billchenchina.
commit
1838326a7c37672ff85cc97f5cb4e13dfd6a3781
Author: Priyanka Gurudev <prbg@cisco.com>
Date: Tue May 10 14:20:44 2022 -0400
doc: user documentation update for obfuscate_pii and --help-module
You can also get the code with:
- git clone git://github.com/snort3/snort3.git
+ git clone https://github.com/snort3/snort3.git
There are separate extras packages for cmake that provide additional
features and demonstrate how to build plugins. The source for extras
the command line. For example, to see what stream_tcp is all about, do
this:
- $ snort --help-config stream_tcp
+ $ snort --help-module stream_tcp
Modules are configured using Lua tables with the same name. So the
stream_tcp module is configured with defaults like this:
===== Obfuscating Credit Cards and Social Security Numbers
Snort provides discreet logging for the built in patterns "credit_card",
-"us_social" and "us_social_nodashes". Enabling `output.obfuscate_pii` makes
+"us_social" and "us_social_nodashes". Enabling `ips.obfuscate_pii` makes
Snort obfuscate the suspect packet payload which was matched by the
patterns. This configuration is disabled by default.
- output =
+ ips =
{
obfuscate_pii = true
}
projects / thirdparty / snort3.git / commitdiff
