Security Onion Blog

Thursday, July 9, 2015

New securityonion-tcpudpflow package resolves an issue

I've updated the securityonion-tcpudpflow package to improve the formatting of the Bro transcript option when processing UDP (primarily DNS) traffic.  The new package version is as follows:
securityonion-tcpudpflow - 001-0ubuntu0securityonion3

Screenshots
The Bro transcript option now clearly shows 3 separate sections: "Bro UDP output from SRC", "Bro UDP output from DST", and "Bro DNS analyzer output"

Issues Resolved
securityonion-tcpudpflow: remove connection_state_remove event handler #761
https://github.com/Security-Onion-Solutions/security-onion/issues/761

Updating
This new package is now available in our stable repo.  Please see the following page for full update instructions:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrade

Feedback
If you have any questions or problems, please use our security-onion mailing list:
https://github.com/Security-Onion-Solutions/security-onion/wiki/MailingLists

Training
Need training?  Please see:
http://securityonionsolutions.com

Commercial Support
Need commercial support?  Please see:
http://securityonionsolutions.com

Help Wanted
If you and/or your organization have found value in Security Onion, please consider giving back to the community by joining one of our teams:
https://github.com/Security-Onion-Solutions/security-onion/wiki/TeamMembers

Thanks!

at
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Search This Blog

Featured Post

Security Onion Documentation printed book now updated for Security Onion 2.4.110!

We've been offering our Security Onion documentation in book form on Amazon for a few years and it's now been updated for the recent...

Popular Posts

Blog Archive