On 14/12/2024 23:44, gene heskett wrote:
What is suricata, first I've heard of it
I was expecting that you would walk through every item reported by "dpkg
-V" and "systemctl --failed". For the former, you have enough data
locally to get more info
dpkg -S /etc/suricata/suricata.yaml
and "apt show" with the reported package name. Either you clicked at a
wrong item or somebody manages your computer. Depending on the degree of
your paranoia, I would either just purge suricata or to dig into apt and
dpkg logs to figure out when it was installed and what actions were
performed around that time.
Audit other lines as well: were modifications intentional? If it is not
a conffile then move changes to /etc and restore original version.
