[Bro-Dev] [JIRA] (BIT-1173) Upload pysubnettree to pypi

2014-03-31 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1173: - Summary: Upload pysubnettree to pypi Key: BIT-1173 URL: https://bro-tracker.atlassian.net/browse/BIT-1173 Project: Bro Issue Tracker Issue Type: Task

[Bro-Dev] [JIRA] (BIT-1172) Add uid field to the signatures log stream

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1172?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1172: - Assignee: Seth Hall > Add uid field to the signatures log str

[Bro-Dev] [JIRA] (BIT-1168) Add Java version to software framework

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1168?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1168: - Assignee: Seth Hall > Add Java version to software framew

[Bro-Dev] [JIRA] (BIT-1173) Upload pysubnettree to pypi

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1173: -- Resolution: Invalid Status: Closed (was: Open) > Upload pysubnettree to p

[Bro-Dev] [JIRA] (BIT-1161) topic/jsiwek/faster-val-clone

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1161: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topic/jsiwek/fas

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16004#comment-16004 ] Robin Sommer commented on BIT-1129: --- Vlad, any trace? What about the two questions a

[Bro-Dev] [JIRA] (BIT-1170) merge topic/bernhard/sumstats-read-expire

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1170?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1170: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > merge topic/bernh

[Bro-Dev] [JIRA] (BIT-1142) SNMP Analysis

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1142?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16003#comment-16003 ] Robin Sommer commented on BIT-1142: --- I'm fine merging this but I would then stil

[Bro-Dev] [JIRA] (BIT-1159) type checking inconsistencies

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1159?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1159: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > type check

[Bro-Dev] [JIRA] (BIT-1172) Add uid field to the signatures log stream

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1172?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1172: -- Status: Merge Request (was: Open) > Add uid field to the signatures log str

[Bro-Dev] [JIRA] (BIT-1160) Update cluster documentation

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1160?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1160: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > Update clus

[Bro-Dev] [JIRA] (BIT-1168) Add Java version to software framework

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1168?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1168: -- Status: Merge Request (was: Open) > Add Java version to software framew

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1150: -- Status: Reopened (was: Closed) > X509 updates > > > K

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1150: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > X509 upda

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1143: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > Investigate replac

[Bro-Dev] [JIRA] (BIT-1169) topic/jsiwek/parse-only

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1169?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1169: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topic/jsiwek/pa

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16002#comment-16002 ] Robin Sommer commented on BIT-1150: --- Merged, but leaving open as CHANGES still need

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-31 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16000#comment-16000 ] Robin Sommer commented on BIT-1150: --- Please give me some text for CHANGES and NEWS

Re: [Bro-Dev] [JIRA] (BIT-1159) count/port comparisons silently fail when part of a record

2014-03-20 Thread Robin Sommer
> Is the original code actually supposed to work? Yeah, I'm afraid it is ... That has indeed been a legitimate shortcut since Bro's early versions. However, I wouldn't veto removing it; it does indeed make some code parts quite a bit more complex, and I don't think it's a crucial feature to have

[Bro-Dev] [JIRA] (BIT-1159) count/port comparisons silently fail when part of a record

2014-03-20 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1159?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15813#comment-15813 ] Robin Sommer commented on BIT-1159: --- Yeah, I'm afraid it is ... That has inde

[Bro-Dev] [JIRA] (BIT-1158) topic/dnthayer/broctl-fixes

2014-03-17 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1158?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1158: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topic/dnthayer/bro

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15754#comment-15754 ] Robin Sommer commented on BIT-1150: --- Agreed. Seth, when you have reviewed the scr

Re: [Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer
On Fri, Mar 14, 2014 at 15:16 -0500, you wrote: > Nice. I can follow up separately to check on why Val::Clone() is so > expensive, but probably the perf. diff in this branch shouldn't block > the merge. Agreed. Seth, when you have reviewed the scripts, either go ahead with the merge, or assign

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15748#comment-15748 ] Robin Sommer commented on BIT-1150: --- Not merged yet. > X509

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15744#comment-15744 ] Robin Sommer commented on BIT-1150: --- Note, BIT-953 and BIT-760 have some additi

[Bro-Dev] [JIRA] (BIT-760) Lift Server Alternative Name (SAN) field to scripting layer

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-760?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-760: - Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) The merge is tracked by

[Bro-Dev] [JIRA] (BIT-953) SSL Analyzer: return the root CA used to validate a cert

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-953?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-953: - Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) The merge is tracked by

[Bro-Dev] [JIRA] (BIT-1149) Check Coverity PIA message

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1149?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1149: -- Resolution: Fixed Status: Closed (was: Open) > Check Coverity PIA mess

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15737#comment-15737 ] Robin Sommer commented on BIT-1150: --- I made a pass over the changes but focussed on

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15739#comment-15739 ] Robin Sommer commented on BIT-1150: --- Now, here's what looks like a major problem:

[Bro-Dev] [JIRA] (BIT-1149) Check Coverity PIA message

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1149?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15740#comment-15740 ] Robin Sommer commented on BIT-1149: --- Fixed in 00755f1e40c7e > Check Coverity PIA

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1150: -- Assignee: Seth Hall (was: Bernhard Amann) > X509 updates > > >

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15738#comment-15738 ] Robin Sommer commented on BIT-1150: --- One more for Bernhard: the code in {{file_anal

[Bro-Dev] [JIRA] (BIT-1134) DNS_Mgr::LookupAddr does not respect DNS_FAKE

2014-03-14 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1134?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15735#comment-15735 ] Robin Sommer commented on BIT-1134: --- If just order changes, or say new lookups

[Bro-Dev] [JIRA] (BIT-1154) Formatters restructed in: topic/seth/json-formatter

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1154?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1154: - Assignee: (was: Robin Sommer) > Formatters restructed in: topic/seth/json-format

[Bro-Dev] [JIRA] (BIT-1154) Formatters restructed in: topic/seth/json-formatter

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1154?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1154: -- Status: Open (was: Merge Request) > Formatters restructed in: topic/seth/json-format

[Bro-Dev] [JIRA] (BIT-1134) DNS_Mgr::LookupAddr does not respect DNS_FAKE

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1134?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1134: -- Status: Open (was: Merge Request) > DNS_Mgr::LookupAddr does not respect DNS_F

[Bro-Dev] [JIRA] (BIT-1148) Bug in Connection::FlipRoles

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1148?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1148: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > Bug in Connect

[Bro-Dev] [JIRA] (BIT-1154) Formatters restructed in: topic/seth/json-formatter

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1154?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15729#comment-15729 ] Robin Sommer commented on BIT-1154: --- Also, regarding renaming: agree that the A

[Bro-Dev] [JIRA] (BIT-1154) Formatters restructed in: topic/seth/json-formatter

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1154?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15728#comment-15728 ] Robin Sommer commented on BIT-1154: --- Merged. The tests are a bit on the weak side th

[Bro-Dev] [JIRA] (BIT-1156) DNS analyzer parses TXT records imcompletely

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15727#comment-15727 ] Robin Sommer commented on BIT-1156: --- Yes, this is what I meant; and right: it shoul

[Bro-Dev] [JIRA] (BIT-1134) DNS_Mgr::LookupAddr does not respect DNS_FAKE

2014-03-13 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1134?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15725#comment-15725 ] Robin Sommer commented on BIT-1134: --- Merging. I'm suggesting a further change tho

Re: [Bro-Dev] [Bro-Commits] [git/broctl] topic/dnthayer/broctl-fixes: Do not ping when checking if a host is alive (b71fc1d)

2014-03-13 Thread Robin Sommer
rname $0`/broctl-config.sh > - > -if [ "${os}" == "linux" ]; then > -cmd='ping -q -c 1 -W 1' > -cmd6='ping6 -q -c 1 -W 1' > -elif [ "${os}" == "openbsd" -o "${os}" == "netbsd" ]; then > -cmd=&

Re: [Bro-Dev] [Bro-Commits] [git/bro] topic/bernhard/file-analysis-x509: Change x509 log - now certificates are only logged once per hour. (0d50b8b)

2014-03-13 Thread Robin Sommer
borate? I sense an opportuntity to improve our API. :-) Robin -- Robin Sommer * Phone +1 (510) 722-6541 * ro...@icir.org ICSI/LBNL* Fax +1 (510) 666-2956 * www.icir.org/robin ___ bro-dev mailing list bro-dev@bro.org http://mailman.icsi.berkeley.ed

[Bro-Dev] [JIRA] (BIT-1156) DNS analyzer parses TXT records imcompletely

2014-03-12 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15724#comment-15724 ] Robin Sommer commented on BIT-1156: --- ,,, or better: pass a set[string] to the event. &

[Bro-Dev] [JIRA] (BIT-1156) DNS analyzer parses TXT records imcompletely

2014-03-12 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1156: - Summary: DNS analyzer parses TXT records imcompletely Key: BIT-1156 URL: https://bro-tracker.atlassian.net/browse/BIT-1156 Project: Bro Issue Tracker Issue Type

[Bro-Dev] [JIRA] (BIT-1128) Add configure options for linking against jemalloc

2014-03-12 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1128?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1128: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > Add configure opti

[Bro-Dev] [JIRA] (BIT-1153) DNS inconsistency

2014-03-10 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1153?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1153: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > DNS inconsiste

[Bro-Dev] [JIRA] (BIT-1153) DNS inconsistency

2014-03-10 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1153: - Summary: DNS inconsistency Key: BIT-1153 URL: https://bro-tracker.atlassian.net/browse/BIT-1153 Project: Bro Issue Tracker Issue Type: Problem

[Bro-Dev] [JIRA] (BIT-1147) topic/seth/dns-srv-fix - Fixing some problems with DNS

2014-03-10 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1147?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15718#comment-15718 ] Robin Sommer commented on BIT-1147: --- Yeah, I saw that, but it's uglier to h

[Bro-Dev] [JIRA] (BIT-1147) topic/seth/dns-srv-fix - Fixing some problems with DNS

2014-03-10 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1147?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1147: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topic/seth/dns-

[Bro-Dev] [JIRA] (BIT-1147) topic/seth/dns-srv-fix - Fixing some problems with DNS

2014-03-09 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1147?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15715#comment-15715 ] Robin Sommer commented on BIT-1147: --- Let me ask the expected question: any better wa

[Bro-Dev] [JIRA] (BIT-1149) Check Coverity PIA message

2014-03-07 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1149: - Summary: Check Coverity PIA message Key: BIT-1149 URL: https://bro-tracker.atlassian.net/browse/BIT-1149 Project: Bro Issue Tracker Issue Type: Problem

[Bro-Dev] [JIRA] (BIT-1152) BroControl version check

2014-03-07 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1152: - Summary: BroControl version check Key: BIT-1152 URL: https://bro-tracker.atlassian.net/browse/BIT-1152 Project: Bro Issue Tracker Issue Type: Problem

[Bro-Dev] [JIRA] (BIT-1150) X509 updates

2014-03-07 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1150: - Summary: X509 updates Key: BIT-1150 URL: https://bro-tracker.atlassian.net/browse/BIT-1150 Project: Bro Issue Tracker Issue Type: Problem Components

[Bro-Dev] [JIRA] (BIT-1151) JSON output

2014-03-07 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1151: - Summary: JSON output Key: BIT-1151 URL: https://bro-tracker.atlassian.net/browse/BIT-1151 Project: Bro Issue Tracker Issue Type: Problem Components: Bro

[Bro-Dev] [JIRA] (BIT-348) Reassembler integer overflow issues. Data not delivered after 2GB

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-348?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-348: - Fix Version/s: (was: 2.4) 2.3 > Reassembler integer overflow issues. Data

[Bro-Dev] [JIRA] (BIT-348) Reassembler integer overflow issues. Data not delivered after 2GB

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-348?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-348: Assignee: Bernhard Amann > Reassembler integer overflow issues. Data not delivered after

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1143: -- Reporter: Seth Hall (was: Jon Siwek) > Investigate replacing libmagic w/ signatures for f

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1143: -- Reporter: Jon Siwek (was: Seth Hall) > Investigate replacing libmagic w/ signatures for f

[Bro-Dev] [JIRA] (BIT-1139) MHR lookups can cause significant CPU overhead in tests

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1139?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1139: - Assignee: Jon Siwek (was: Gilbert Clark) > MHR lookups can cause significant CPU overhead

[Bro-Dev] [JIRA] (BIT-1137) Investigate sumstats / scan detector performance

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1137?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1137: - Assignee: Seth Hall (was: Gilbert Clark) > Investigate sumstats / scan detector performa

[Bro-Dev] [JIRA] (BIT-1138) UDP scan detection generates a large number of triggers

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1138?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1138: -- Resolution: Invalid Status: Closed (was: Open) Not in distribution yet. > UDP s

[Bro-Dev] [JIRA] (BIT-1134) DNS_Mgr::LookupAddr does not respect DNS_FAKE

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1134?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1134: - Assignee: Jon Siwek > DNS_Mgr::LookupAddr does not respect DNS_F

[Bro-Dev] [JIRA] (BIT-1128) Add configure options for linking against jemalloc

2014-03-07 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1128?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1128: - Assignee: Jon Siwek > Add configure options for linking against jemal

[Bro-Dev] [JIRA] (BIT-1146) Merge topic/bernhard/ssl-failure

2014-03-05 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1146?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1146: - Assignee: Seth Hall > Merge topic/bernhard/ssl-fail

[Bro-Dev] [JIRA] (BIT-1144) topk_get_top returned data type

2014-03-03 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1144?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1144: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topk_get_top retur

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-03-03 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1132: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > topic/seth/h

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-03-03 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1132: -- Status: Merge Request (was: Open) > topic/seth/http-conn

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-03-03 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15700#comment-15700 ] Robin Sommer commented on BIT-1132: --- New version in topic/seth/http-connect. I'll

[Bro-Dev] [JIRA] (BIT-123) expire-logs doesn't expire stats/*

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-123?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-123: - Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > expire-logs does

[Bro-Dev] [JIRA] (BIT-700) PacketSorter

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-700?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-700: - Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > PacketSor

[Bro-Dev] [JIRA] (BIT-1117) Broctl base communication port should be configurable

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1117?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1117: -- Resolution: Merged (was: Fixed) Status: Closed (was: Merge Request) > Broctl b

[Bro-Dev] [JIRA] (BIT-700) PacketSorter

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-700?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15604#comment-15604 ] Robin Sommer commented on BIT-700: -- What's this? :) Delete? {code} +

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1129: - Assignee: Vlad Grigorescu > RADIUS Protocol Analy

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

2014-02-28 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1129: -- Status: Open (was: Merge Request) > RADIUS Protocol Analy

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-21 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15583#comment-15583 ] Robin Sommer commented on BIT-1143: --- Wedging it in is fine for now. Eventually we m

Re: [Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-21 Thread Robin Sommer
On Fri, Feb 21, 2014 at 09:57 -0600, you wrote: > Rather than wedge it in to existing "signature" engine, another idea > would be to create a new "magic" engine that parallels it. Wedging it in is fine for now. Eventually we might end up doing a larger redesign of the signature engine to improv

[Bro-Dev] [JIRA] (BIT-1138) UDP scan detection generates a large number of triggers

2014-02-21 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15581#comment-15581 ] Robin Sommer commented on BIT-1138: --- The CPU spikes worry me quite a bit. I can't q

[Bro-Dev] [JIRA] (BIT-1144) topk_get_top returned data type

2014-02-21 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1144?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15578#comment-15578 ] Robin Sommer commented on BIT-1144: --- Getting test suite errors: {

[Bro-Dev] [JIRA] (BIT-1136) Apply lib magic fix

2014-02-21 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1136?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1136: -- Status: Closed (was: Merge Request) > Apply lib magic

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-20 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15573#comment-15573 ] Robin Sommer commented on BIT-1143: --- I was thinking better control over the matc

Re: [Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-20 Thread Robin Sommer
On Thu, Feb 20, 2014 at 16:59 -0600, you wrote: > In that case, what's gained from Bro having it's own file magic > signatures instead of just using libmagic by itself? I was thinking better control over the matching, but I guess there's not really that much to gain in addition. > If Bro did c

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-20 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15569#comment-15569 ] Robin Sommer commented on BIT-1143: --- Just checked: the magic database covers 273 diffe

[Bro-Dev] [JIRA] (BIT-1143) Investigate replacing libmagic w/ signatures for file identificaiton

2014-02-20 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1143?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15568#comment-15568 ] Robin Sommer commented on BIT-1143: --- Agree with Seth on the verbose descriptions. While

[Bro-Dev] [JIRA] (BIT-1138) UDP scan detection generates a large number of triggers

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15562#comment-15562 ] Robin Sommer commented on BIT-1138: --- Yeah, I keep forgetting that we don't

[Bro-Dev] [JIRA] (BIT-1135) BRO_DNS_FAKE not respected everywhere

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1135?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1135: -- Resolution: Duplicate Status: Closed (was: Open) > BRO_DNS_FAKE not respected everywh

[Bro-Dev] [JIRA] (BIT-1139) MHR lookups can cause significant CPU overhead in tests

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1139?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1139: - Assignee: Gilbert Clark > MHR lookups can cause significant CPU overhead in te

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1132: -- Status: Open (was: Merge Request) > topic/seth/http-conn

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1132: -- Fix Version/s: 2.3 > topic/seth/http-connect > --- > >

[Bro-Dev] [JIRA] (BIT-1137) Investigate sumstats / scan detector performance

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1137?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer reassigned BIT-1137: - Assignee: Gilbert Clark > Investigate sumstats / scan detector performa

[Bro-Dev] [JIRA] (BIT-1141) Investigate further improvements to file analysis performance

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1141: - Summary: Investigate further improvements to file analysis performance Key: BIT-1141 URL: https://bro-tracker.atlassian.net/browse/BIT-1141 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1129: -- Fix Version/s: 2.3 > RADIUS Protocol Analyzer > > >

[Bro-Dev] [JIRA] (BIT-1132) topic/seth/http-connect

2014-02-18 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1132?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15559#comment-15559 ] Robin Sommer commented on BIT-1132: --- It's not working yet, I'll take a look.

[Bro-Dev] [JIRA] (BIT-1140) Bloomfilter hashing problem

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1140: - Summary: Bloomfilter hashing problem Key: BIT-1140 URL: https://bro-tracker.atlassian.net/browse/BIT-1140 Project: Bro Issue Tracker Issue Type: Problem

[Bro-Dev] [JIRA] (BIT-1139) MHR lookups can cause significant CPU overhead in tests

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1139: - Summary: MHR lookups can cause significant CPU overhead in tests Key: BIT-1139 URL: https://bro-tracker.atlassian.net/browse/BIT-1139 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-1138) UDP scan detection generates a large number of triggers

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1138: - Summary: UDP scan detection generates a large number of triggers Key: BIT-1138 URL: https://bro-tracker.atlassian.net/browse/BIT-1138 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-1137) Investigate sumstats / scan detector performance

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1137: - Summary: Investigate sumstats / scan detector performance Key: BIT-1137 URL: https://bro-tracker.atlassian.net/browse/BIT-1137 Project: Bro Issue Tracker Issue

[Bro-Dev] [JIRA] (BIT-1135) BRO_DNS_FAKE not respected everywhere

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1135: - Summary: BRO_DNS_FAKE not respected everywhere Key: BIT-1135 URL: https://bro-tracker.atlassian.net/browse/BIT-1135 Project: Bro Issue Tracker Issue Type: Problem

[Bro-Dev] [JIRA] (BIT-1136) Apply lib magic fix

2014-02-18 Thread Robin Sommer (JIRA)
Robin Sommer created BIT-1136: - Summary: Apply lib magic fix Key: BIT-1136 URL: https://bro-tracker.atlassian.net/browse/BIT-1136 Project: Bro Issue Tracker Issue Type: Problem

<    6   7   8   9   10   11   12   13   14   15   >