We're proud to announce that a new version of the Suricata Engine is available for download! There are some major changes and very significant improvements, we ask that you give this a try, we welcome your feedback and patches!
Suricata 0.8.1 brings the following new features:
- the engine will now detect the number of cpu's/core's and setup the engine to use them fully
- libhtp is now included in the source
- experimental CUDA support for NVIDIA GPU accelerated pattern matching
- initial support for Win32 (using mingw) was added
- FreeBSD/Mac OS X IPFW inline support was added
- many options in the configuration file for performance tuning
- VLAN decoding support was added
- Prelude output support
Major issues fixed & improvements made:
- threading issues in the unified1 and unified2 logging modules
- major stream engine issues were solved
- uricontent, urilen inspection is now done against the libhtp parsed uri
- ip only signature detection fixes in inline mode
- add the /P (request body) option to the pcre keyword
- many SMB, SMB2 and DCERPC improvements
- logging is more configurable
- pcap and pfring modes support for bpf was added
- many bugs were fixed, cleanups were made
Known issues:
- Some signatures fail to load because of missing keywords or keyword options
- We have identified some serious performance issues with certain signatures and traffic combinations
- Although we improved big endian support, there are still some issues
- CUDA code is expected to work only on 32bit and probably doesn't speed things up yet as we will need further redsign to fully benefit
| < Prev | Next > |
|---|