It was reported [1] that a number of TCP evasions existed in versions of Suricata prior to 1.0.2. Upstream has released version 1.0.2 to address these flaws [2]. Only Fedora 14 provides suricata (1.0.0) and should be updated to the latest version. [1] http://www.packetstan.com/2010/09/suricata-tcp-evasions.html [2] http://www.openinfosecfoundation.org/index.php/component/content/article/1-latest-news/103-suricata-102-released
Created suricata tracking bugs for this issue Affects: fedora-14 [bug 651978]