suricata-reporter: Create a example configuration file

author Michael Tremer <michael.tremer@ipfire.org>

Wed, 6 Aug 2025 16:56:34 +0000 (17:56 +0100)

committer Michael Tremer <michael.tremer@ipfire.org>

Thu, 21 Aug 2025 08:44:48 +0000 (09:44 +0100)
author Michael Tremer <michael.tremer@ipfire.org>
Wed, 6 Aug 2025 16:56:34 +0000 (17:56 +0100)
committer Michael Tremer <michael.tremer@ipfire.org>
Thu, 21 Aug 2025 08:44:48 +0000 (09:44 +0100)
diff --git a/src/reporter.conf b/src/reporter.conf

new file mode 100644 (file)

index 0000000..071e4ca
--- /dev/null
+++ b/src/reporter.conf
@@ -0,0 +1,34 @@
+;
+; Example configuration file for the Suricata Reporter
+; 
+; This application receives events from Suricata to generate reports,
+; alert emails and store a history of alerts.
+;
+[DEFAULT]
+; The number of worker processes to spawn.
+; Default is to launch one worker per CPU core.
+;workers = 4
+
+; The socket where to receive events from
+;socket = /var/run/suricata/reporter.socket
+
+; The ownership of the socket
+;user = suricata
+;group = suricata
+
+; The path to the database
+;database = /var/log/suricata/reporter.db
+
+[syslog]
+; Enable sending any alerts to syslog in the human-reable fast.log format
+;enabled = true
+
+[email]
+; Enable sending an alert email for each alert
+;enabled = true
+
+; The sender email address
+;sender = no-reply@ipfire.org
+
+; The recipient email addresses. Use comma separation for more reciepients.
+;recipients = john.doe@example.com, jane.doe@example.com
author	Michael Tremer <michael.tremer@ipfire.org>
	Wed, 6 Aug 2025 16:56:34 +0000 (17:56 +0100)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Thu, 21 Aug 2025 08:44:48 +0000 (09:44 +0100)