ids.cgi: Stop suricata when the rulest source has been changed

If the ruleset source has been changed, it has to be configured again. This happens because of different rule categories, filenames rule ID's etc. In case suricata currently is running it has to be stopped and after the configuration has been done by the user, it can be launched again. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
2026-04-15 13:32:59 +02:00 · 2019-02-05 12:43:49 +01:00
parent 5709768b0b
commit 97870bf29c
1 changed files with 8 additions and 0 deletions
--- a/html/cgi-bin/ids.cgi
+++ b/html/cgi-bin/ids.cgi
@@ -352,6 +352,14 @@ if ($cgiparams{'RULESET'} eq $Lang::tr{'save'}) {
 				&IDS::oinkmaster();
 			}

+			# Check if the IDS is running.
+			if(&IDS::ids_is_running()) {
+				# Call suricatactrl to stop the IDS - because of the changed
+				# ruleset - the use has to configure it before suricata can be
+				# used again.
+				&IDS::call_suricatactrl("stop");
+			}
+
 			# Perform a reload of the page.
 			&reload();
 		}