diff options
| author | Luca Deri <deri@ntop.org> | 2023-09-09 18:09:57 +0200 |
|---|---|---|
| committer | Luca Deri <deri@ntop.org> | 2023-09-09 18:09:57 +0200 |
| commit | 076edeab54bf4271e29f342882373171169fd651 (patch) | |
| tree | 48cb1a463658a0467f3387ba13b2149dc91de3c5 /doc | |
| parent | f50a4d7e85c656f18a900f7cb930da45f5ed6df4 (diff) | |
Enhance DNS risk for long hostnames (> 32)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/flow_risks.rst | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/flow_risks.rst b/doc/flow_risks.rst index 295ecb1a6..052bd156d 100644 --- a/doc/flow_risks.rst +++ b/doc/flow_risks.rst @@ -141,7 +141,8 @@ This risk indicates that the protocol used is insecure and that a secure protoco NDPI_DNS_SUSPICIOUS_TRAFFIC =========================== -This risk is returned when DNS traffic returns an unexpected/obsolete `record type <https://en.wikipedia.org/wiki/List_of_DNS_record_types>`_. +This risk is returned when DNS traffic returns an unexpected/obsolete `record type <https://en.wikipedia.org/wiki/List_of_DNS_record_types>`_ +or when a suspicious query with a very long host name is detected. .. _Risk 024: |