Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-08 17:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
zeek/scripts/base/frameworks/notice
History
Justin Azoff ec3f684c61 change Notice::suppressing to be a table of times 
Instead of storing the entire notice in Notice::suppressing,
just store the time the notice should be suppressed until.

This has the same functionality, except that end_suppression can no
longer be generated.
2013-12-31 10:09:44 -05:00
..
actions Document which Bro script vars are set by BroControl 2013-10-22 16:40:29 -05:00
extend-email Updates for the notices framework. 2013-02-11 14:36:14 -05:00
__load__.bro Updates for the notices framework. 2013-02-11 14:36:14 -05:00
cluster.bro change Notice::suppressing to be a table of times 2013-12-31 10:09:44 -05:00
main.bro change Notice::suppressing to be a table of times 2013-12-31 10:09:44 -05:00
non-cluster.bro Fix typos and formatting in the notice framework docs 2013-10-22 09:16:29 -05:00
README Add more script package README files 2013-10-22 14:44:59 -05:00
weird.bro Fix typos and formatting in the notice framework docs 2013-10-22 09:16:29 -05:00

README 

The notice framework enables Bro to "notice" things which are odd or
potentially bad, leaving it to the local configuration to define which
of them are actionable.  This decoupling of detection and reporting allows
Bro to be customized to the different needs that sites have.