zeek/scripts/base/frameworks/notice at 3ec9fb0f7f9485e87803b51ff0554e7be842487f - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Johanna Amann 3ec9fb0f7f Change notices to be processed on worker. In the past they were processed on the manager - which requires big records to be sent around. This has a potential of incompatibilities if someone relied on global state for notice processing. GH-214		2019-06-25 13:51:27 -07:00
..
actions	Change notices to be processed on worker.	2019-06-25 13:51:27 -07:00
__load__.zeek	GH-379: move catch-and-release and unified2 scripts to policy/	2019-06-05 13:33:45 -07:00
main.zeek	Change notices to be processed on worker.	2019-06-25 13:51:27 -07:00
README	More bro-to-zeek renaming in scripts and other files	2019-05-16 02:36:41 -05:00
weird.zeek	More bro-to-zeek renaming in scripts and other files	2019-05-16 02:36:41 -05:00

README

The notice framework enables Zeek to "notice" things which are odd or
potentially bad, leaving it to the local configuration to define which
of them are actionable.  This decoupling of detection and reporting allows
Zeek to be customized to the different needs that sites have.