Mirror/zeek - git.uphillsecurity.com: We code.

mirror of https://github.com/zeek/zeek.git synced 2025-10-04 15:48:19 +00:00

Author	SHA1	Message	Date
Robin Sommer	a9f0b10e2e	Updating baselines for recent commits.	2011-12-19 07:44:29 -08:00
Robin Sommer	26ff8e1dab	Merge remote branch 'origin/topic/seth/notice-email-delay' * origin/topic/seth/notice-email-delay: The hostname notice email extension works now. Fixed more bugs with delayed emails. Working around a problem with setting default container types. Ugh, still major failure. I'm just cutting the timeout handling for now. Fixed a small bug major problem with email delay timeout catching. Initial fixes for the problem of async actions with notice email extensions. Closes #727.	2011-12-19 07:10:28 -08:00
Robin Sommer	01e4588737	Merge remote branch 'origin/topic/jsiwek/record-coerce-default' * origin/topic/jsiwek/record-coerce-default: Fix &default fields in records not being initialized in coerced assignments. Closes #722.	2011-12-19 06:54:32 -08:00
Robin Sommer	5ee605f244	Merge remote branch 'origin/topic/bernhard/log-set-description' * origin/topic/bernhard/log-set-description: update baseline make LogWriter output the type of data stored inside a set or vector.	2011-12-19 06:39:02 -08:00
Robin Sommer	3220bbce55	Merge remote branch 'origin/topic/jsiwek/log-escaping' * origin/topic/jsiwek/log-escaping: Add missing ascii writer options to log header. Escape the ASCII log's set separator (addresses #712) Rewrite ODesc character escaping functionality. (addresses #681) Closes #712.	2011-12-19 06:37:54 -08:00
Robin Sommer	0a3e160a8d	Merge remote branch 'origin/topic/seth/dns-updates' * origin/topic/seth/dns-updates: Fixed some bugs with capturing data in the base DNS script. Some updates to the base DNS script. Closes #702.	2011-12-18 15:20:00 -08:00
Robin Sommer	f3c2811e14	Merge remote branch 'origin/topic/seth/ssl-updates-for-2.0' * origin/topic/seth/ssl-updates-for-2.0: Added is_orig fields to the SSL events and adapted script. Closes #692.	2011-12-18 15:15:57 -08:00
Robin Sommer	719557a05b	Merge remote branch 'origin/fastpath' * origin/fastpath: Enable warnings for malformed Broxygen xref roles. Broxygen fix for function parameter recognition; better than `80b2451`. Allow Broxygen markup "##<" for more general use.	2011-12-18 15:10:49 -08:00
Bernhard Amann	85bbef69f3	Merge remote-tracking branch 'origin/master' into topic/bernhard/input	2011-12-17 01:45:44 -08:00
Jon Siwek	23177aa081	Enable warnings for malformed Broxygen xref roles.	2011-12-16 14:36:15 -06:00
Jon Siwek	cc1459ef35	Fix some malformed Broxygen xref roles.	2011-12-16 14:30:36 -06:00
Bernhard Amann	bd5dadf427	change software framework interface again. At the moment everything should worl.	2011-12-16 11:24:52 -08:00
Bernhard Amann	6de51e69ed	Merge remote-tracking branch 'origin/master' into topic/bernhard/software	2011-12-16 10:42:48 -08:00
Jon Siwek	8394829fb1	Broxygen fix for function parameter recognition; better than `80b2451`.	2011-12-16 11:59:55 -06:00
Jon Siwek	3b91df8cf5	Allow Broxygen markup "##<" for more general use.	2011-12-16 11:21:49 -06:00
Jon Siwek	366a5de606	Minor doc tweaks to init-bare.bro.	2011-12-16 11:13:20 -06:00
Jon Siwek	bd00fb7894	Merge branch 'master' into topic/script-reference	2011-12-16 11:12:11 -06:00
Seth Hall	8399d28c2e	The hostname notice email extension works now.	2011-12-16 10:59:30 -05:00
Robin Sommer	41a68933eb	Updating submodule(s).	2011-12-16 02:59:39 -08:00
Robin Sommer	84e6caed2c	Merge remote branch 'origin/master' * origin/master: Cleanup some misc Broxygen css/js stuff. Add search box to Broxygen docs (fixes #726). Some markup for the tracker to close the recently addresses tickets: Closes #726. Closes #433. Closes #311. Closes #664.	2011-12-16 02:41:43 -08:00
Robin Sommer	8c53446292	Merge remote branch 'origin/fastpath' * origin/fastpath: Fixed major bug with cluster synchronization (it was broken!)	2011-12-16 02:37:56 -08:00
Robin Sommer	4e17ef63f0	Merge remote branch 'origin/fastpath' * origin/fastpath: Fix missing action in notice policy for looking up GeoIP data. Better persistent state config warning messages (fixes #433). A few updates for SQL injection detection. Fixed some DPD signatures for IRC. Fixes ticket #311. Removing Off_Port_Protocol_Found notice. SSH::Interesting_Hostname_Login cleanup. Fixes #664. Teach Broxygen to more generally reference attribute values by name. Fixed a really dumb bug that was causing the malware hash registry script to break. Fix Broxygen confusing scoped id at start of line as function parameter. Remove remnant of libmagic optionality	2011-12-16 02:36:43 -08:00
Matthias Vallentin	3ab03874b5	Merge branch 'topic/script-reference' into topic/bif_cleanup Conflicts: src/bro.bif	2011-12-15 22:54:52 -08:00
Seth Hall	0b8b14a0ed	Fixed major bug with cluster synchronization (it was broken!)	2011-12-15 15:59:51 -05:00
Seth Hall	b66c73baaa	Fixed more bugs with delayed emails.	2011-12-15 15:57:42 -05:00
Jon Siwek	fc9a38a796	Cleanup some misc Broxygen css/js stuff.	2011-12-15 13:01:23 -06:00
Jon Siwek	d04558dc45	Add search box to Broxygen docs (fixes #726 ).	2011-12-15 13:00:29 -06:00
Jon Siwek	f302f2f3f2	Fix &default fields in records not being initialized in coerced assignments. Addresses #722	2011-12-15 12:16:42 -06:00
Seth Hall	667dcb251a	Working around a problem with setting default container types.	2011-12-15 12:51:14 -05:00
Seth Hall	cb904cec4f	Ugh, still major failure. I'm just cutting the timeout handling for now.	2011-12-15 12:46:15 -05:00
Seth Hall	f1f5719f83	Fixed a small bug major problem with email delay timeout catching.	2011-12-15 12:41:05 -05:00
Seth Hall	2d97e25eeb	Initial fixes for the problem of async actions with notice email extensions.	2011-12-15 12:27:41 -05:00
Robin Sommer	28c0733dca	Adding todo to all protocol events that aren't generated yet because 2.0 doesn't activate the analyzer. Seth, can you double-check whether I got the right events?	2011-12-15 06:40:21 -08:00
Robin Sommer	55c982fa14	Adding Broxygen comments to init-bare.bro. I've left a few TODOs in there for protocol-specific fields that I couldn't directly figure out in their meaning. Feel free to fill in where you can.	2011-12-15 06:38:59 -08:00
Jon Siwek	303993254e	Add more DPD and packet filter framework docs.	2011-12-14 16:07:36 -06:00
Jon Siwek	d89658c19b	Add more signature framework documentation.	2011-12-14 12:50:54 -06:00
Jon Siwek	a543ebbea5	Add more notice framework documentation.	2011-12-14 10:05:52 -06:00
Jon Siwek	86cba4c33f	Fix missing action in notice policy for looking up GeoIP data.	2011-12-13 16:17:44 -06:00
Jon Siwek	ae57cbe5fc	Better persistent state config warning messages (fixes #433 ).	2011-12-13 09:52:26 -06:00
Matthias Vallentin	362b8105fd	More directive fixes.	2011-12-12 13:18:55 -08:00
Matthias Vallentin	6ba62b200d	Remove X.509 from first-sentence documention. It turns out that Doxygen uses the first dot (in X.509) as marker for the one-sentence summary.	2011-12-12 13:12:52 -08:00
Matthias Vallentin	b04b5fea16	Mark match_signatures as internal.	2011-12-12 13:12:24 -08:00
Seth Hall	61aa592db5	A few updates for SQL injection detection. - The biggest change is the change in notice names from HTTP::SQL_Injection_Attack_Against to HTTP::SQL_Injection_Victim - A few new SQL injection attacks in the tests that we need to support at some point.	2011-12-12 14:26:54 -05:00
Jon Siwek	ff7a1ed9d5	Fix some sphinx warnings.	2011-12-12 11:07:18 -06:00
Matthias Vallentin	72a7814657	Document currently dysfunctional anonymization BiFs.	2011-12-11 19:10:21 -08:00
Matthias Vallentin	50d5571939	Give mode2string a more generic name.	2011-12-11 18:49:00 -08:00
Matthias Vallentin	3814313b0b	Merge branch 'master' into topic/bif_cleanup	2011-12-11 18:47:19 -08:00
Matthias Vallentin	1b646c9119	Reorder and group BiFs.	2011-12-10 23:13:04 -08:00
Matthias Vallentin	e17206e7ff	Merge branch 'topic/script-reference' of ssh://git.bro-ids.org/bro into topic/script-reference	2011-12-10 22:15:03 -08:00
Matthias Vallentin	4a9a17292f	Finish documenting bro.bif.	2011-12-10 22:14:48 -08:00

... 11 12 13 14 15 ...

2499 commits