Change alarm summary email interval to 24hrs

scripts/base/frameworks/cluster/nodes/manager.bro

@@ -15,6 +15,8 @@ redef Log::enable_remote_logging = F;
 
 redef Log::default_rotation_interval = 1 hrs;
 
+redef Log::default_alarm_mail_interval = 24 hrs;
+
 ## Use the cluster's archive logging script.
 redef Log::default_rotation_postprocessor_cmd = "archive-log";
 

scripts/base/frameworks/logging/main.bro

@@ -60,6 +60,9 @@ export {
 	## Default rotation interval. Zero disables rotation.
 	const default_rotation_interval = 0secs &redef;
 
+	## Default alarm mail interval. Zero disables alarm mails.
+	const default_alarm_mail_interval = 0secs &redef;
+
 	## Default naming format for timestamps embedded into filenames.
 	## Uses a ``strftime()`` style.
 	const default_rotation_date_format = "%Y-%m-%d-%H-%M-%S" &redef;

scripts/base/frameworks/notice/actions/pp-alarms.bro

@@ -101,7 +101,7 @@ event bro_init()
 	# This replaces the standard non-pretty-printing filter.
 	Log::add_filter(Notice::ALARM_LOG,
 			[$name="alarm-mail", $writer=Log::WRITER_NONE,
-			 $interv=Log::default_rotation_interval,
+			 $interv=Log::default_alarm_mail_interval,
 			 $postprocessor=pp_postprocessor]);
 	}