Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

include a few more tls changes that we might want to mention in news

Browse source
This commit is contained in:
Bernhard Amann 2014-05-20 09:28:33 -07:00
parent 1253b7cb8a
commit 96f71c24d8
1 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

8
NEWS
View file

@ -43,6 +43,8 @@ New Functionality
the default value of "SSL::disable_analyzer_after_detection" from true the default value of "SSL::disable_analyzer_after_detection" from true
to false to prevent encrypted heartbeats from being ignored. to false to prevent encrypted heartbeats from being ignored.
- StartTLS is now supported for SMTP and POP3.
- The X509 analyzer can now perform OSCP validation. - The X509 analyzer can now perform OSCP validation.
- Bro now has analyzers for SNMP and Radius, which produce corresponding - Bro now has analyzers for SNMP and Radius, which produce corresponding
@ -82,9 +84,15 @@ Changed Functionality
event x509_extension(c: connection, is_orig: bool, cert: X509, ext: X509_extension_info); event x509_extension(c: connection, is_orig: bool, cert: X509, ext: X509_extension_info);
- In addition, there are several new, more specialized events for a
number of x509 extensions.
- Generally, all x509 events and handling functions have changed their - Generally, all x509 events and handling functions have changed their
signatures. signatures.
- X509 certificate verification now returns the complete certificate
chain that was used for verification.
- Bro no longer special-cases SYN/FIN/RST-filtered traces by not - Bro no longer special-cases SYN/FIN/RST-filtered traces by not
reporting missing data. Instead, if Bro never sees any data segments reporting missing data. Instead, if Bro never sees any data segments
for analyzed TCP connections, the new for analyzed TCP connections, the new