Software Update: Suricata 3.1.3

The second update for version 3.1 of Suricata has been released. Suricata is an open source network intrusion detection system (IDS), intrusion prevention system (IPS), and network security monitoring engine. It can be used to monitor network traffic and alert a system administrator if anything suspicious is detected. Development is overseen by the Open Information Security Foundation, with support from the community and various manufacturers. The with it on json based logging system Eve collected data can be done with, among other things, log stash are used to display information graphically again at to give† The following improvements have been made in this release:

Suricata 3.1.3 released!
This release improves DNS logging accuracy. Other than that it is mostly a collection of smaller fixes.This release fixes some important issues, so we highly recommend updating.

changes

• Bug #1861: Suricata with multitenancy does not start in 3.1/3.1.1
• Bug #1889: Suricata doesn’t error on missing semicolon
• Bug #1910: libhtp 0.5.23 (3.1.x)
• Bug #1912: http.memcap reached condition can lead to dead lock
• Bug #1913: af-packet fanout detection broken on Debian Jessie
• Bug #1933: unix-command socket created with last character missing (3.1.x)
• Bug #1934: make install-full does not install tls-events.rules (3.1.x)
• Bug #1941: Can’t set fast_pattern on tls_sni content (3.1.x)
• Bug #1942: dns – back to back requests results in loss of response (3.1.x)
• Bug #1943: Check redis reply in non pipeline mode (3.1.x)

Logstash Kibana fed with information from Suricata with json output.