mirror of
https://github.com/zeek/zeek.git
synced 2025-10-08 01:28:20 +00:00
597a4d6704
- policy/ renamed to scripts/ - By default BROPATH now contains: - scripts/ - scripts/policy - scripts/site - *Nearly* all tests pass. - All of scripts/base/ is loaded by main.cc - Can be disabled by setting $BRO_NO_BASE_SCRIPTS - Scripts in scripts/base/ don't use relative path loading to ease use of BRO_NO_BASE_SCRIPTS (to copy and paste that script). - The scripts in scripts/base/protocols/ only (or soon will only) do logging and state building. - The scripts in scripts/base/frameworks/ add functionality without causing any additional overhead. - All "detection" activity happens through scripts in scripts/policy/. - Communications framework modified temporarily to need an environment variable to actually enable (ENABLE_COMMUNICATION=1) - This is so the communications framework can be loaded as part of the base without causing trouble when it's not needed. - This will be removed once a resolution to ticket #540 is reached.
44 lines
No EOL
1.3 KiB
Text
44 lines
No EOL
1.3 KiB
Text
##! This script loads everything in the base/ script directory. If you want
|
|
##! to run Bro without all of these scripts loaded by default, you can define
|
|
##! the BRO_NO_BASE_SCRIPTS environment variable to any value. You can also
|
|
##! copy the "@load" lines from this script to your own script to load only
|
|
##! the scripts that you actually want.
|
|
|
|
@if ( getenv("BRO_NO_BASE_SCRIPTS") == "" )
|
|
|
|
@load base/utils/site
|
|
@load base/utils/addrs
|
|
@load base/utils/conn-ids
|
|
@load base/utils/directions-and-hosts
|
|
@load base/utils/files
|
|
@load base/utils/numbers
|
|
@load base/utils/paths
|
|
@load base/utils/patterns
|
|
@load base/utils/strings
|
|
@load base/utils/thresholds
|
|
|
|
# This has some weird interplay between types and BiFs so it's loaded in bro.init
|
|
#@load base/frameworks/logging
|
|
@load base/frameworks/notice
|
|
@load base/frameworks/dpd
|
|
@load base/frameworks/signatures
|
|
@load base/frameworks/packet-filter
|
|
@load base/frameworks/software
|
|
@load base/frameworks/intel
|
|
@load base/frameworks/metrics
|
|
@load base/frameworks/communication
|
|
@load base/frameworks/control
|
|
@load base/frameworks/cluster
|
|
@load base/frameworks/reporter
|
|
|
|
@load base/protocols/conn
|
|
@load base/protocols/dns
|
|
@load base/protocols/ftp
|
|
@load base/protocols/http
|
|
@load base/protocols/irc
|
|
@load base/protocols/smtp
|
|
@load base/protocols/ssh
|
|
@load base/protocols/ssl
|
|
@load base/protocols/syslog
|
|
|
|
@endif |