Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 07:38:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
2499 commits 385 branches 195 tags 258 MiB
Commit graph

2499 commits

This branch
This branch
All branches
Author SHA1 Message Date
Daniel Thayer
acf5537acf Add ssl and syslog script documentation 2012-01-09 15:26:34 -06:00
Jon Siwek
62d012e04a Add Conn and DNS protocol script documentation. (fixes #731) 2012-01-09 14:23:24 -06:00
Seth Hall
f389fb42c3 Small updates to the default local.bro. 
- Removed the note from local-manager.bro about setting the
  notice policy there.  The notice framework changed and this
  isn't necessary anymore.
 2012-01-09 13:23:14 -05:00
Robin Sommer
2efab49e12 Merge remote-tracking branch 'origin/topic/jsiwek/openbsd-support' 
* origin/topic/jsiwek/openbsd-support:
  Tweaks for OpenBSD support.

Closes #743.

[I've moved the OpenBSD note about the Makefile into the FAQ. There
might be more stuff to add there over time.]
 2012-01-08 21:02:53 -08:00
Robin Sommer
03306d791d Merge remote-tracking branch 'origin/topic/jsiwek/sftp-pp' 
* origin/topic/jsiwek/sftp-pp:
  Add SFTP log postprocessor that transfers logs to remote hosts.
  Add FAQ entry about disabling NIC offloading features.

Closes #737.
 2012-01-08 20:49:50 -08:00
Seth Hall
3be1222532 Documentation updates for HTTP & IRC scripts. 
Closes #733
 2012-01-08 02:22:52 -05:00
Seth Hall
48ed922e06 SSH&FTP Documentation updates. 
Closes #732
 2012-01-08 01:16:40 -05:00
Bernhard Amann
a8d4a3c35b Merge remote-tracking branch 'origin/master' into topic/bernhard/input 2012-01-07 09:16:23 -08:00
Seth Hall
1afe8b011c Fixing a warning from the documentation generation. 2012-01-06 16:50:20 -05:00
Seth Hall
f603d0121b This completes framework documentation package 4. 
- Closes ticket #709
 2012-01-06 16:36:22 -05:00
Jon Siwek
e7cf347288 Add SFTP log postprocessor that transfers logs to remote hosts. 
Addresses #737
 2012-01-06 14:58:17 -06:00
Robin Sommer
7646ef1aed Merge remote-tracking branch 'origin/master' into topic/script-reference 
Conflicts:
	scripts/base/frameworks/notice/actions/pp-alarms.bro
	scripts/base/frameworks/notice/main.bro
	scripts/base/init-bare.bro
	src/event.bif
 2012-01-06 12:11:49 -08:00
Jon Siwek
e83df9487a Add FAQ entry about disabling NIC offloading features. 2012-01-06 13:10:07 -06:00
Jon Siwek
d661ccfc8e Tweaks for OpenBSD support. 
- Add note about top-level Makefile possibly lacking OpenBSD support.
- Extend config.h with missing/different preprocessor definitions
 2012-01-06 11:39:38 -06:00
Robin Sommer
e48f62622c Addign a file NEWS with release notes. 
Using that to capture the most important changes between 2.0 Beta and
2.0 Final.
 2012-01-05 15:23:42 -08:00
Robin Sommer
edb6e80ff3 Merge remote-tracking branch 'origin/fastpath' 
* origin/fastpath:
  Remove upgrade documentation regarding change in default snaplen.
  Reduce snaplen default from 65535 to old default of 8192. (fixes #720)

Closes #720.
 2012-01-05 15:03:06 -08:00
Bernhard Amann
5bef49d625 Merge remote-tracking branch 'origin/master' into topic/bernhard/input 
Conflicts:
	src/parse.y
 2012-01-05 01:11:13 -08:00
Bernhard Amann
3054b45971 Merge remote-tracking branch 'origin/topic/bernhard/input' into topic/bernhard/input 2012-01-05 01:08:11 -08:00
Jon Siwek
aae60a6d76 Allow local table variables to be initialized with {} list expressions. 2012-01-04 16:44:25 -06:00
Jon Siwek
7d85308b76 Remove upgrade documentation regarding change in default snaplen. 2012-01-04 16:41:39 -06:00
Jon Siwek
645c80f974 Reduce snaplen default from 65535 to old default of 8192. (fixes #720) 
Also replaced the --snaplen/-l command line option with a
scripting-layer option called "snaplen" (which can also be
redefined on the command line, e.g. `bro -i eth0 snaplen=65535`).
 2012-01-04 16:30:15 -06:00
Robin Sommer
e5b3d318a6 Merge remote-tracking branch 'origin/topic/seth/ssl-improvements' 
* origin/topic/seth/ssl-improvements:
  Removed the SSLv2.cc file since it's not used.
  Added the ssl_session_ticket_handshake event back.
  Added the ssl_session_ticket_handshake event and fixed a few SSL bugs.
 2012-01-04 12:48:39 -08:00
Robin Sommer
0ca6e492b3 Merge branch 'master' of ssh://git.bro-ids.org/bro 2012-01-04 12:45:42 -08:00
Robin Sommer
aa4cc3c4a1 Adding top-level "test" target to Makefile. 2012-01-04 12:34:36 -08:00
Robin Sommer
ba30713ec4 Adding SWIG as dependency to INSTALL. 
And a bit of polishing.
 2012-01-04 12:30:54 -08:00
Seth Hall
e5bb76e684 Removed the SSLv2.cc file since it's not used. 2012-01-04 14:51:19 -05:00
Seth Hall
0b93b071ea Added the ssl_session_ticket_handshake event back. 2012-01-04 13:53:26 -05:00
Seth Hall
3d0722f0e5 Merge branch 'master' into topic/seth/ssl-improvements 
Conflicts:
	src/event.bif
	src/ssl-protocol.pac
 2012-01-04 13:51:31 -05:00
Seth Hall
f8ec98625d Merge remote-tracking branch 'origin/topic/robin/pp-alarms' 
* origin/topic/robin/pp-alarms:
  The silliest, tiniest little whitespace fixes.
  Update missing in last commit to this branch.
  Adding test for alarm mail.
  Tuning the pretty-printed alarms output.
 2012-01-04 13:41:28 -05:00
Seth Hall
adfbed8e56 The silliest, tiniest little whitespace fixes. 2012-01-04 13:37:07 -05:00
Robin Sommer
167b645ed0 Updating submodule(s). 
[nomail]
 2012-01-03 15:58:15 -08:00
Robin Sommer
358db60503 Merge remote-tracking branch 'origin/topic/jsiwek/remove-refined-type' 
* origin/topic/jsiwek/remove-refined-type:
  Remove dead code related to record type inheritance.
 2012-01-03 15:42:44 -08:00
Robin Sommer
8200544293 Updating test baselines for log change 2012-01-03 15:29:25 -08:00
Robin Sommer
5e9153d7d6 Merge remote-tracking branch 'origin/topic/bernhard/notice-proto' 
* origin/topic/bernhard/notice-proto:
  log protocol in notices.

Conflicts:
	scripts/base/frameworks/notice/main.bro

Closes #718.
 2012-01-03 14:52:07 -08:00
Robin Sommer
5435dcbfb1 Merge remote-tracking branch 'origin/fastpath' 
* origin/fastpath:
  CMake 2.6 top-level 'install' target compat. (fixes #729)
  Minor fixes to external test process. (addresses #298)
  Increase timeout interval of communication-related btests.

Closes #729.
Closes #298.
 2012-01-03 14:48:15 -08:00
Jon Siwek
0cd03986a1 CMake 2.6 top-level 'install' target compat. (fixes #729) 2012-01-03 10:56:33 -06:00
Jon Siwek
ff1768f857 Minor fixes to external test process. (addresses #298) 
- Skip diffing of debug.log always.
- Skip diffing of reporter.log if it only contains an error about
  missing GeoIP support.
- Canonicalize X.509 Distinguished Name subjects since that can vary
  depending on installed OpenSSL version.
 2011-12-20 11:47:39 -06:00
Jon Siwek
eeceb14c1a Merge branch 'master' into fastpath 2011-12-20 11:45:50 -06:00
Jon Siwek
275420dd29 Minor notice documentation tweaks. 2011-12-19 16:28:30 -06:00
Jon Siwek
a4117016e9 Merge branch 'master' into topic/script-reference 
Conflicts:
	aux/broccoli
	aux/broctl
	scripts/base/frameworks/notice/main.bro
	src/event.bif
 2011-12-19 16:17:58 -06:00
Jon Siwek
436be4e07b Remove dead code related to record type inheritance. 2011-12-19 15:06:52 -06:00
Bernhard Amann
70a2cf6732 update baseline to include input framework 2011-12-19 12:43:51 -08:00
Bernhard Amann
a14ec02d3b change empty field defenition like in logging framework 2011-12-19 12:43:25 -08:00
Bernhard Amann
59967d40ac Merge remote-tracking branch 'origin/master' into topic/bernhard/input 
Conflicts:
	src/LogMgr.cc
	src/LogMgr.h
 2011-12-19 12:36:53 -08:00
Robin Sommer
43124d4b1c Update one more baseline. 2011-12-19 11:37:51 -08:00
Robin Sommer
8199d85d6a Updating submodule(s). 2011-12-19 11:27:29 -08:00
Jon Siwek
578cd06176 Increase timeout interval of communication-related btests. 
This may help clear up some transient test failures on the NMI testbed.
 2011-12-19 13:12:02 -06:00
Robin Sommer
3ac4ff6b42 Updates for log format changes. 2011-12-19 09:09:32 -08:00
Robin Sommer
c81477d9d3 Executive decision: empty fields are now logged as "(empty)" by default. 2011-12-19 08:49:30 -08:00
Robin Sommer
c1e656d89e In log headers, only escape information when necessary. 2011-12-19 08:44:41 -08:00