Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-03 07:08:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
zeek/scripts/base/protocols
History
Aaron Eppert c93b057a97 (BIT-1545) Add "disable_analyzer_after_detection" en lieu of "skip_processing_after_detection" 
The default of "skip_processing_after_detection" is confusing and causes conn.log to not be written as one would assume, plus the counters are not incremented and thus some kinds of potential detections are short-changed. I propose adding "disable_analyzer_after_detection" which would react, on the surface, the same way by disabling the SSH analyzer, but allowing conn.log to be written appropriately.
2016-03-05 11:59:52 -05:00
..
conn Update documentation for RSTR. 2016-03-01 14:08:58 -08:00
dhcp Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
dnp3 Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
dns Merge remote-tracking branch 'origin/topic/jsiwek/bit-1324' 2015-03-23 10:35:30 -07:00
ftp Fix reporter errors with GridFTP traffic. 2015-06-08 09:42:06 -07:00
http Merge branch 'patch-3' of https://github.com/aeppert/bro 2016-01-15 10:35:57 -08:00
irc File API updates complete. 2015-04-20 10:46:48 -04:00
krb Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
modbus Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
mysql Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
pop3 Add README files for base/protocols 2013-10-17 12:47:32 -05:00
radius Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
rdp Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
sip Subscribe is a valid message per RFC 3265 2016-03-01 14:00:11 -08:00
smtp SMTP logs include CC: addresses [BIT-1429] 2015-07-26 22:08:43 +03:00
snmp Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
socks Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
ssh (BIT-1545) Add "disable_analyzer_after_detection" en lieu of "skip_processing_after_detection" 2016-03-05 11:59:52 -05:00
ssl Extend ssl dpd signature to allow alert before server_hello. 2015-10-22 13:36:21 -07:00
syslog Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
tunnels Make Teredo DPD signature more precise. 2015-08-12 17:16:09 -07:00