net-analyzer/suricata/files/suricata-5.0.1_default-config.patch


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@@ -203,8 +203,9 @@
             # https://suricata.readthedocs.io/en/latest/output/eve/eve-json-output.html#dns-v1-format
 
             # As of Suricata 5.0, version 2 of the eve dns output
-            # format is the default.
-            #version: 2
+            # format is the default - but the daemon produces a warning to that effect
+            # at start-up if this isn't explicitly set.
+            version: 2
 
             # Enable/disable this logger. Default: enabled.
             #enabled: yes
@@ -978,9 +979,9 @@
 ##
 
 # Run suricata as user and group.
-#run-as:
-#  user: suri
-#  group: suri
+run-as:
+  user: suricata
+  group: suricata
 
 # Some logging module will use that name in event as identifier. The default
 # value is the hostname