mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
17d0ade26a
By default this only logs all the violations, regardless of the confirmation state (for which there's still dpd.log). It includes packet, protocol and file analyzers. This uses options, change handlers and event groups for toggling the functionality at runtime. Closes #2031
28 lines
1.1 KiB
Text
28 lines
1.1 KiB
Text
# Load these frameworks here because they use fairly deep integration with
|
|
# BiFs and script-land defined types. They are also more likely to
|
|
# make use of calling BIFs for variable initializations, and that
|
|
# can't be done until init-bare.zeek has been loaded completely (hence
|
|
# the separate file).
|
|
@load base/frameworks/logging
|
|
@load base/frameworks/broker
|
|
@load base/frameworks/supervisor
|
|
@load base/frameworks/input
|
|
@load base/frameworks/cluster
|
|
@load base/frameworks/config
|
|
@load base/frameworks/analyzer
|
|
@load base/frameworks/files
|
|
|
|
@load base/bif
|
|
|
|
# Load BiFs defined by plugins.
|
|
@load base/bif/plugins
|
|
|
|
# This sets up secondary/subdir BIFs such that they can be used by any
|
|
# further scripts within their global initializations and is intended to be
|
|
# the last thing done within this script. It's called within @if simply so
|
|
# that it executes at parse-time. An alternative way to do that is to call
|
|
# it during a global variable assignment/initialization. Formally adding a
|
|
# @run directive to the language whose sole purpose is parse-time code
|
|
# execution would be another idea.
|
|
@if ( __init_secondary_bifs() )
|
|
@endif
|