ja4-platform/tests/integration/apache/platform/ja4ebpf.yml

# Configuration ja4ebpf — stack Apache
# Fichier monté dans /etc/ja4ebpf/config.yml

interface: eth0

# Cibles uprobe : httpd lie OpenSSL via libssl.so.
# Sur RHEL/Rocky, le binaire est /usr/sbin/httpd.
targets:
  - binary: /usr/sbin/httpd
  - binary: /usr/lib64/httpd/modules/mod_ssl.so

clickhouse:
  addr: "${JA4EBPF_CH_ADDR:-clickhouse:9000}"
  database: ja4_logs
  table: http_logs_raw
  batch_size: 200
  flush_interval_ms: 500

session:
  timeout_ms: 500
  slowloris_timeout_s: 10
  gc_interval_ms: 100