Hi,
Thanks for quick reply.
Suricata is used only as IDS. Suricata binary is ran in non-privileged Docker container as non privileged user with cap_net_raw+eip capabilities. Does it create an impact on what Suricata can detect?
Thanks
Zilvinas
Hi,
Thanks for quick reply.
Suricata is used only as IDS. Suricata binary is ran in non-privileged Docker container as non privileged user with cap_net_raw+eip capabilities. Does it create an impact on what Suricata can detect?
Thanks
Zilvinas