Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-03 23:28:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
zeek/scripts/base/frameworks/notice
History
Justin Azoff 43b2b9806e add a max_line_length flag to ContentLine_Analyzer 
In ContentLine_Analyzer, prevent excessively long lines being assembled.
The line length will default to just under 16MB, but can be overriden on
a per-analyzer basis.  This is done for the finger,ident, and irc
analyzers.
2017-11-03 16:25:26 -04:00
..
actions Adjust default priority of ACTION_DROP hook. 2016-07-26 13:39:40 -07:00
extend-email Updates for the notices framework. 2013-02-11 14:36:14 -05:00
__load__.bro Updates for the notices framework. 2013-02-11 14:36:14 -05:00
cluster.bro Lessen cluster node of notice suppression. 2017-05-03 13:28:16 -07:00
main.bro Lessen cluster node of notice suppression. 2017-05-03 13:28:16 -07:00
non-cluster.bro Fix typos and formatting in the notice framework docs 2013-10-22 09:16:29 -05:00
README Add more script package README files 2013-10-22 14:44:59 -05:00
weird.bro add a max_line_length flag to ContentLine_Analyzer 2017-11-03 16:25:26 -04:00

README 

The notice framework enables Bro to "notice" things which are odd or
potentially bad, leaving it to the local configuration to define which
of them are actionable.  This decoupling of detection and reporting allows
Bro to be customized to the different needs that sites have.