mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
5b4313b593
This also updates all usages of the deprecated Val ctor to use either IntervalVal, TimeVal, or DoubleVal ctors. The reason for doing away with the old constructor is that using it with TYPE_INTERVAL isn't strictly correct since there exists a more specific subclass, IntervalVal, with overriden ValDescribe() method that ought to be used to print such values in a more descriptive way.
115 lines
1.8 KiB
Text
115 lines
1.8 KiB
Text
============EVENT============
|
|
Input::EVENT_NEW
|
|
[i=-42]
|
|
[b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
============SERVERS============
|
|
{
|
|
[-42] = [b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
}
|
|
============EVENT============
|
|
Input::EVENT_NEW
|
|
[i=-43]
|
|
[b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
============SERVERS============
|
|
{
|
|
[-43] = [b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]],
|
|
[-42] = [b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
}
|
|
============EVENT============
|
|
Input::EVENT_CHANGED
|
|
[i=-43]
|
|
[b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
============SERVERS============
|
|
{
|
|
[-43] = [b=F, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]],
|
|
[-42] = [b=T, e=SSH::LOG, c=21, p=123/unknown, sn=10.0.0.0/24, a=1.2.3.4, d=3.14, t=1315801931.273616, iv=1.0 min 40.0 secs, s=hurz, sc={
|
|
2,
|
|
4,
|
|
1,
|
|
3
|
|
}, ss={
|
|
BB,
|
|
AA,
|
|
CC
|
|
}, se={
|
|
|
|
}, vc=[10, 20, 30], ve=[]]
|
|
}
|
|
done
|