From: Philippe Antoine Date: Thu, 11 May 2023 09:21:32 +0000 (+0200) Subject: tftp: improves check for alert app-layer data X-Git-Tag: suricata-6.0.16~35 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4d2bd8cc38bb8d78cb8c473e831cb41140e3a80c;p=thirdparty%2Fsuricata-verify.git tftp: improves check for alert app-layer data --- diff --git a/tests/output-eve-tftp-01/test.yaml b/tests/output-eve-tftp-01/test.yaml index b83cefc3e..814c80d54 100644 --- a/tests/output-eve-tftp-01/test.yaml +++ b/tests/output-eve-tftp-01/test.yaml @@ -15,3 +15,9 @@ checks: count: 1 match: event_type: alert +- filter: + min-version: 8 + count: 1 + match: + event_type: alert + tftp.packet: "read"