This PR changes the Suricata helpers to take into consideration a BRIM_SURICATA_USER_DIR environment variable. If present, the helpers use that dir to write suricata config and rules. Otherwise, the helpers continue to use the existing installation directory as previously.
This is motivated by Linux system wide installs where the install dir is non-writable.
For consistency I'll do this for Windows, but likely in a follow-on PR.
This PR changes the Suricata helpers to take into consideration a
BRIM_SURICATA_USER_DIRenvironment variable. If present, the helpers use that dir to write suricata config and rules. Otherwise, the helpers continue to use the existing installation directory as previously.This is motivated by Linux system wide installs where the install dir is non-writable.
For consistency I'll do this for Windows, but likely in a follow-on PR.
The issue tracking this is https://github.com/brimsec/brim/1216