From: Jon Zeolla <zeolla@gmail.com>
Date: Mon, 13 Mar 2017 16:51:44 +0000 (-0400)
Subject: docs: fix statement about flow:to_server
X-Git-Tag: suricata-4.0.0-beta1~248
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=ce8a65a58e11c1a3371a12226b56e6b9400a6e5f;p=thirdparty%2Fsuricata.git

docs: fix statement about flow:to_server
---

diff --git a/doc/userguide/reputation/ipreputation/ip-reputation-rules.rst b/doc/userguide/reputation/ipreputation/ip-reputation-rules.rst
index 589800fb3e..1808c98f15 100644
--- a/doc/userguide/reputation/ipreputation/ip-reputation-rules.rst
+++ b/doc/userguide/reputation/ipreputation/ip-reputation-rules.rst
@@ -28,7 +28,7 @@ Example:
 
   alert ip $HOME_NET any -> any any (msg:"IPREP internal host talking to CnC server"; flow:to_server; iprep:dst,CnC,>,30; sid:1; rev:1;)
 
-This rule will alert when a system in $HOME_NET performs a client request while communicating with any IP in the CnC category that has a reputation score set to greater than 30.
+This rule will alert when a system in $HOME_NET acts as a client while communicating with any IP in the CnC category that has a reputation score set to greater than 30.
 
 IP-only
 ~~~~~~~