Merge commit '1a327cd355' into topic/policy-scripts-new

* commit '1a327cd355': Moved events for filling in connection service field to dpd.bro
2025-10-02 14:48:21 +00:00 · 2011-03-16 17:00:46 -04:00 · 2011-03-16 17:00:46 -04:00 · a876c4c7cf
commit a876c4c7cf
parent 4c4ab80e84 1a327cd355
4 changed files with 20 additions and 24 deletions
--- a/policy.old/conn.bro
+++ b/policy.old/conn.bro
@ -310,25 +310,6 @@ function record_connection(f: file, c: connection)
 	print f, log_msg;
 	}

-event protocol_confirmation(c: connection, atype: count, aid: count)
-	{
-	if ( ! dpd_conn_logs )
-		return;
-
-	delete c$service[fmt("-%s",analyzer_name(atype))];
-	add c$service[analyzer_name(atype)];
-	}
-
-event protocol_violation(c: connection, atype: count, aid: count,
-				reason: string) &priority = 10
-	{
-	if ( ! dpd_conn_logs )
-		return;
-
-	delete c$service[analyzer_name(atype)];
-	add c$service[fmt("-%s",analyzer_name(atype))];
-	}
-
 event connection_established(c: connection)
 	{
 	Hot::check_hot(c, Hot::CONN_ESTABLISHED);
--- a/policy.old/dpd.bro
+++ b/policy.old/dpd.bro
@ -1,5 +0,0 @@
-# $Id: dpd.bro,v 1.1.2.1 2006/05/10 02:10:26 sommer Exp $
-#
-# Activates port-independent protocol detection.
-
-redef signature_files += "dpd.sig";
--- a/policy/dpd.bro
+++ b/policy/dpd.bro
@ -0,0 +1,20 @@
+# $Id: dpd.bro,v 1.1.2.1 2006/05/10 02:10:26 sommer Exp $
+#
+# Activates port-independent protocol detection.
+
+redef signature_files += "dpd.sig";
+
+
+event protocol_confirmation(c: connection, atype: count, aid: count)
+	{
+	delete c$service[fmt("-%s",analyzer_name(atype))];
+	add c$service[analyzer_name(atype)];
+	}
+
+event protocol_violation(c: connection, atype: count, aid: count,
+				reason: string) &priority = 10
+	{
+	delete c$service[analyzer_name(atype)];
+	add c$service[fmt("-%s",analyzer_name(atype))];
+	}
+
--- a/policy.old/sigs/dpd.sig
+++ b/policy.old/sigs/dpd.sig