Yes this is part of Proofpoint.
I have installed Suricata from OISF provided RPMs on CentOS 7. When services starts the following warnings occurs:
[/usr/lib/systemd/system/suricata.service:17] Unknown lvalue âMemoryDenyWriteExecuteâ in section âServiceâ
[/usr/lib/systemd/system/suricata.service:18] Unknown lvalue âLockPersonalityâ in section âServiceâ
[/usr/lib/systemd/system/suricata.service:19] Unknown lvalue âProtectControlGroupsâ in section âServiceâ
[/usr/lib/systemd/system/suricata.service:20] Unknown lvalue âProtectKernelModulesâ in section âServiceâ
In the suricata.service these four parameters are set to âtrueâ. If the value âyesâ is used the warnings donât occur. Theoretically based on man systemd.unit the boolean arguments can be written in various formats (1, yes, true and on are equivalent). It looks like it is not. The suricata.service in CentOS/RHEL rpms can be corrected.
How can you create RPMs from the downloaded Suricata 6 files?
The files to build RPMs that the OISF provides for Suricata can be found here: GitHub - jasonish/suricata-rpms: Suricata RPMs for CentOS/RHEL and Fedora
Iâve just done some fixups and updated the README to help with doing your own local builds. For our official RPMs we use COPR, a build service provided by the Fedora project. The README has examples for building RPMs for CentOS 7 and AlmaLinux 8.