Skip to content

DOC: Typo fix #3187

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
IvanNardi merged 1 commit into from
Jun 1, 2026
+6 −6
Merged

DOC: Typo fix #3187

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 6 additions & 6 deletions doc/flow_risks.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -87,7 +87,7 @@ HTTP only: this risk is triggered whenever the accessed URL is suspicious. Examp

NDPI_HTTP_SUSPICIOUS_HEADER
===========================
HTTP only: this risk is triggered whenever the HTTP peader contains suspicious entries such as Uuid, TLS_version, Osname that are unexpected on the HTTP header.
HTTP only: this risk is triggered whenever the HTTP header contains suspicious entries such as Uuid, TLS_version, Osname that are unexpected on the HTTP header.

.. _Risk 015:

Expand Down Expand Up @@ -148,7 +148,7 @@ or when a suspicious query with a very long host name is detected.

NDPI_TLS_MISSING_SNI
====================
TLS needs to carry the the `SNI <https://en.wikipedia.org/wiki/Server_Name_Indication>`_ of the remote server we're accessing. Unfortunately SNI is optional in TLS so it can be omitted. In this case this risk is triggered as this is a non-standard situation that indicates a potential security problem or a protocol using TLS for other purposes (or a protocol bug).
TLS needs to carry the `SNI <https://en.wikipedia.org/wiki/Server_Name_Indication>`_ of the remote server we're accessing. Unfortunately SNI is optional in TLS so it can be omitted. In this case this risk is triggered as this is a non-standard situation that indicates a potential security problem or a protocol using TLS for other purposes (or a protocol bug).

.. _Risk 025:

Expand Down Expand Up @@ -339,22 +339,22 @@ HTTP only: this risk indicates that a binary file/data application transfer (att

NDPI_PROBING_ATTEMPT
====================
Connection with no data exchaged that looks like a probing attempt
Connection with no data exchaged that looks like a probing attempt.

.. _Risk 056:

NDPI_OBFUSCATED_TRAFFIC
=======================
This risk is triggered when a connection is likely using some obfuscation technique to try to "look like" something else, hiding its true nature
This risk is triggered when a connection is likely using some obfuscation technique to try to "look like" something else, hiding its true nature.

.. _Risk 057:

NDPI_SLOW_DOS
=======================
This risk is triggered when a TCP connection is likely subject to slow DoS attacks
This risk is triggered when a TCP connection is likely subject to slow DoS attacks.

.. _Risk 058:

NDPI_NON_OQC
NDPI_NON_PQC
============
This risk is triggered when an encrypted stream (e.g. TLS, QUIC, SSH, IPSEC) is not using post-quantum cryptography algorithms.
Loading