[Bro-Dev] [JIRA] (BIT-1578) dns_unmatched_msg weird has no connection associated with it

Vlad Grigorescu created BIT-1578: Summary: dns_unmatched_msg weird has no connection associated with it Key: BIT-1578 URL: https://bro-tracker.atlassian.net/browse/BIT-1578 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-1506) Bro fails to build on OS X 10.11 (El Capitan) due to OpenSSL header removal

[ https://bro-tracker.atlassian.net/browse/BIT-1506?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=25803#comment-25803 ] Vlad Grigorescu commented on BIT-1506: -- [~johanna] - Sure, that's a good idea. Is it reasonable to add

[Bro-Dev] [JIRA] (BIT-1506) Bro fails to build on OS X 10.11 (El Capitan) due to OpenSSL header removal

[ https://bro-tracker.atlassian.net/browse/BIT-1506?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=25601#comment-25601 ] Vlad Grigorescu commented on BIT-1506: -- Seth said that he uses MacPorts, so it's possible that we

[Bro-Dev] [JIRA] (BIT-1528) SNMP and SIP scans show up in known services.

[ https://bro-tracker.atlassian.net/browse/BIT-1528?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1528: - Status: Merge Request (was: Open) Assignee: (was: Vlad Grigorescu) > SNMP and SIP

[Bro-Dev] [JIRA] (BIT-1528) SNMP and SIP scans show up in known services.

[ https://bro-tracker.atlassian.net/browse/BIT-1528?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=25201#comment-25201 ] Vlad Grigorescu commented on BIT-1528: -- Completed in topic/vladg/bit-1528. > SNMP and SIP scans show up

[Bro-Dev] [JIRA] (BIT-1533) mysql analyzer does not set service to mysql

[ https://bro-tracker.atlassian.net/browse/BIT-1533?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=25005#comment-25005 ] Vlad Grigorescu commented on BIT-1533: -- Fixed in topic/vladg/bit-1533 > mysql analyzer does not set

[Bro-Dev] [JIRA] (BIT-1551) Broctl plugins in Bro plugins

[ https://bro-tracker.atlassian.net/browse/BIT-1551?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=24807#comment-24807 ] Vlad Grigorescu commented on BIT-1551: -- Assigning to Daniel for the broctl piece. > Broctl plugins in Bro

[Bro-Dev] [JIRA] (BIT-1551) Broctl plugins in Bro plugins

Vlad Grigorescu created BIT-1551: Summary: Broctl plugins in Bro plugins Key: BIT-1551 URL: https://bro-tracker.atlassian.net/browse/BIT-1551 Project: Bro Issue Tracker Issue Type: New

[Bro-Dev] [JIRA] (BIT-1551) Broctl plugins in Bro plugins

[ https://bro-tracker.atlassian.net/browse/BIT-1551?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu reassigned BIT-1551: Assignee: Daniel Thayer > Broctl plugins in Bro plugins > - >

[Bro-Dev] [JIRA] (BIT-1413) README files misidentified by GitHub

[ https://bro-tracker.atlassian.net/browse/BIT-1413?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=23807#comment-23807 ] Vlad Grigorescu commented on BIT-1413: -- Here's what I was doing: {code} git clone

[Bro-Dev] [JIRA] (BIT-1518) SSH analyzer doesn't handle non-conformant client version strings

Vlad Grigorescu created BIT-1518: Summary: SSH analyzer doesn't handle non-conformant client version strings Key: BIT-1518 URL: https://bro-tracker.atlassian.net/browse/BIT-1518 Project: Bro Issue

[Bro-Dev] [JIRA] (BIT-1500) BinPAC Call to FlowBuffer::NewFrame with frame_length -1

[ https://bro-tracker.atlassian.net/browse/BIT-1500?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=23002#comment-23002 ] Vlad Grigorescu commented on BIT-1500: -- I'd like to revisit this and see if we can get the issue fixed, so

[Bro-Dev] [JIRA] (BIT-1500) BinPAC Call to FlowBuffer::NewFrame with frame_length -1

[ https://bro-tracker.atlassian.net/browse/BIT-1500?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=23004#comment-23004 ] Vlad Grigorescu commented on BIT-1500: -- We can leave it closed. I'll keep it on my backburner. > BinPAC

[Bro-Dev] [JIRA] (BIT-1506) Bro fails to build on OS X 10.11 (El Capitan) due to OpenSSL header removal

[ https://bro-tracker.atlassian.net/browse/BIT-1506?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=22817#comment-22817 ] Vlad Grigorescu commented on BIT-1506: -- Realistically, no one really runs Bro on OS X. But it is

[Bro-Dev] [JIRA] (BIT-1506) Bro fails to build on OS X 10.11 (El Capitan) due to OpenSSL header removal

Vlad Grigorescu created BIT-1506: Summary: Bro fails to build on OS X 10.11 (El Capitan) due to OpenSSL header removal Key: BIT-1506 URL: https://bro-tracker.atlassian.net/browse/BIT-1506 Project:

[Bro-Dev] [JIRA] (BIT-1500) BinPAC Call to FlowBuffer::NewFrame with frame_length -1

[ https://bro-tracker.atlassian.net/browse/BIT-1500?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=22800#comment-22800 ] Vlad Grigorescu commented on BIT-1500: -- I've run into some similar weirdness, which is usually solved by

[Bro-Dev] [JIRA] (BIT-1480) ERSPAN Supprt

[ https://bro-tracker.atlassian.net/browse/BIT-1480?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu reassigned BIT-1480: Assignee: Vlad Grigorescu > ERSPAN Supprt > - > > Key:

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu reassigned BIT-1460: Assignee: Vlad Grigorescu (was: Johanna Amann) > DPD query too large on multicast DNS >

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=22018#comment-22018 ] Vlad Grigorescu commented on BIT-1460: -- Will do. Sorry for not checking that earlier. > DPD query too

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1460: - Status: Open (was: Merge Request) > DPD query too large on multicast DNS >

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=22019#comment-22019 ] Vlad Grigorescu commented on BIT-1460: -- Yes, these all seem reasonable. Several symptoms of this

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=22019#comment-22019 ] Vlad Grigorescu edited comment on BIT-1460 at 9/10/15 3:01 PM: --- Yes, these all

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1460: - Status: Merge Request (was: Open) Assignee: (was: Vlad Grigorescu) > DPD query too

[Bro-Dev] [JIRA] (BIT-1413) README files misidentified by GitHub

[ https://bro-tracker.atlassian.net/browse/BIT-1413?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21944#comment-21944 ] Vlad Grigorescu commented on BIT-1413: -- Sure. I'll go with the symlink idea. > README files misidentified

[Bro-Dev] [JIRA] (BIT-1414) Make PIE option availalbe during compiling

[ https://bro-tracker.atlassian.net/browse/BIT-1414?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1414: - Resolution: Cannot Reproduce Status: Closed (was: Open) > Make PIE option availalbe

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21941#comment-21941 ] Vlad Grigorescu commented on BIT-1460: -- The issue here is src/analyzer/protocol/dns/DNS.cc lines 58-68:

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

[ https://bro-tracker.atlassian.net/browse/BIT-1460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1460: - Status: Merge Request (was: Open) > DPD query too large on multicast DNS >

[Bro-Dev] [JIRA] (BIT-874) Handling Modbus exception FC

[ https://bro-tracker.atlassian.net/browse/BIT-874?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-874: Labels: Modbus analyzer exception fc (was: , Modbus analyser, exception fc) > Handling Modbus

[Bro-Dev] [JIRA] (BIT-1336) ElasticSearch indices in UTC

[ https://bro-tracker.atlassian.net/browse/BIT-1336?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21956#comment-21956 ] Vlad Grigorescu commented on BIT-1336: -- The fix for this is in topic/vladg/es-fixes in the bro-plugins

[Bro-Dev] [JIRA] (BIT-1336) ElasticSearch indices in UTC

[ https://bro-tracker.atlassian.net/browse/BIT-1336?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1336: - Status: Merge Request (was: Open) Assignee: (was: Seth Hall) > ElasticSearch indices

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21926#comment-21926 ] Vlad Grigorescu commented on BIT-1458: -- topic/vladg/bit-1458 reworks the analyzer a bit, and fixes any

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1458: - Status: Merge Request (was: Open) Assignee: (was: Vlad Grigorescu) > Lots of binpac

[Bro-Dev] [JIRA] (BIT-1469) dpd.log contains lots of binpac exceptions for RDP

[ https://bro-tracker.atlassian.net/browse/BIT-1469?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21927#comment-21927 ] Vlad Grigorescu commented on BIT-1469: -- I looked into this, and I don't think that it's trivial to solve

[Bro-Dev] [JIRA] (BIT-1469) dpd.log contains lots of binpac exceptions for RDP

[ https://bro-tracker.atlassian.net/browse/BIT-1469?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1469: - Fix Version/s: 2.5 > dpd.log contains lots of binpac exceptions for RDP >

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=21929#comment-21929 ] Vlad Grigorescu commented on BIT-1458: -- Yeah, I agree. The existing btest's Baseline did need to be

[Bro-Dev] [JIRA] (BIT-1466) Need to document Q and I for conn.log

[ https://bro-tracker.atlassian.net/browse/BIT-1466?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu reassigned BIT-1466: Assignee: Vlad Grigorescu Need to document Q and I for conn.log

[Bro-Dev] [JIRA] (BIT-1466) Need to document Q and I for conn.log

[ https://bro-tracker.atlassian.net/browse/BIT-1466?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21801#comment-21801 ] Vlad Grigorescu commented on BIT-1466: -- Fixed in topic/vladg/bit-1466 Need to document Q

[Bro-Dev] [JIRA] (BIT-1461) Bro Mgr Scripts Fail After Threat Intel Feed Add

[ https://bro-tracker.atlassian.net/browse/BIT-1461?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21708#comment-21708 ] Vlad Grigorescu commented on BIT-1461: -- {quote}Value not found in enum mappimg{quote}

[Bro-Dev] [JIRA] (BIT-1414) Make PIE option availalbe during compiling

[ https://bro-tracker.atlassian.net/browse/BIT-1414?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21001#comment-21001 ] Vlad Grigorescu commented on BIT-1414: -- There are two compiler/linker flags you can use,

[Bro-Dev] [JIRA] (BIT-1414) Make PIE option availalbe during compiling

[ https://bro-tracker.atlassian.net/browse/BIT-1414?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21001#comment-21001 ] Vlad Grigorescu edited comment on BIT-1414 at 6/15/15 5:08 PM: ---

[Bro-Dev] [JIRA] (BIT-1414) Make PIE option availalbe during compiling

[ https://bro-tracker.atlassian.net/browse/BIT-1414?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20912#comment-20912 ] Vlad Grigorescu commented on BIT-1414: -- It worked just fine for me. What issues were you

[Bro-Dev] [JIRA] (BIT-1413) README files misidentified by GitHub

Vlad Grigorescu created BIT-1413: Summary: README files misidentified by GitHub Key: BIT-1413 URL: https://bro-tracker.atlassian.net/browse/BIT-1413 Project: Bro Issue Tracker Issue Type:

[Bro-Dev] [JIRA] (BIT-1412) Documentation/control of Jira markup shortcuts?

[ https://bro-tracker.atlassian.net/browse/BIT-1412?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20908#comment-20908 ] Vlad Grigorescu commented on BIT-1412: -- I don't think they're modifiable, but you can

[Bro-Dev] [JIRA] (BIT-1412) Documentation/control of Jira markup shortcuts?

[ https://bro-tracker.atlassian.net/browse/BIT-1412?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20910#comment-20910 ] Vlad Grigorescu commented on BIT-1412: -- Ah, my mistake. I believe the editor shortcuts are

[Bro-Dev] [JIRA] (BIT-1410) tx_hosts and rx_hosts switched in files.log

[ https://bro-tracker.atlassian.net/browse/BIT-1410?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20911#comment-20911 ] Vlad Grigorescu commented on BIT-1410: -- Fix is in branch topic/vladg/bit-1410 in bro,

[Bro-Dev] [JIRA] (BIT-1394) Github commit seems to have possible configure issues?

[ https://bro-tracker.atlassian.net/browse/BIT-1394?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20602#comment-20602 ] Vlad Grigorescu commented on BIT-1394: -- When working with Bro behind an HTTP proxy, I use

[Bro-Dev] [JIRA] (BIT-1384) Optimize option leads to internal error

Vlad Grigorescu created BIT-1384: Summary: Optimize option leads to internal error Key: BIT-1384 URL: https://bro-tracker.atlassian.net/browse/BIT-1384 Project: Bro Issue Tracker Issue Type:

[Bro-Dev] [JIRA] (BIT-1369) Kerberos Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1369?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20413#comment-20413 ] Vlad Grigorescu commented on BIT-1369: -- I tweaked the kinit btest to print output for one

[Bro-Dev] [JIRA] (BIT-1365) direction field of SSH::Info no longer populated

[ https://bro-tracker.atlassian.net/browse/BIT-1365?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20401#comment-20401 ] Vlad Grigorescu commented on BIT-1365: -- Any reason why local-local couldn't be set to

[Bro-Dev] [JIRA] (BIT-1380) Files::add_analyzer documentation has too many fields

Vlad Grigorescu created BIT-1380: Summary: Files::add_analyzer documentation has too many fields Key: BIT-1380 URL: https://bro-tracker.atlassian.net/browse/BIT-1380 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-1379) PE File Analyzer

Vlad Grigorescu created BIT-1379: Summary: PE File Analyzer Key: BIT-1379 URL: https://bro-tracker.atlassian.net/browse/BIT-1379 Project: Bro Issue Tracker Issue Type: New Feature

[Bro-Dev] [JIRA] (BIT-1379) PE File Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1379?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1379: - Status: Merge Request (was: Open) PE File Analyzer Key:

[Bro-Dev] [JIRA] (BIT-1370) SIP Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20323#comment-20323 ] Vlad Grigorescu commented on BIT-1370: -- I merged master, updated the tests (no changes to

[Bro-Dev] [JIRA] (BIT-1370) SIP Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1370: - Status: Merge Request (was: Open) SIP Analyzer Key: BIT-1370

[Bro-Dev] [JIRA] (BIT-1369) Kerberos Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1369?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20320#comment-20320 ] Vlad Grigorescu commented on BIT-1369: -- I merged master, updated the tests (no changes to

[Bro-Dev] [JIRA] (BIT-1369) Kerberos Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1369?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1369: - Status: Merge Request (was: Open) Kerberos Analyzer - Key:

[Bro-Dev] [JIRA] (BIT-1365) direction field of SSH::Info no longer populated

[ https://bro-tracker.atlassian.net/browse/BIT-1365?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20319#comment-20319 ] Vlad Grigorescu commented on BIT-1365: -- This is fixed in topic/vladg/ssh. When fixing

[Bro-Dev] [JIRA] (BIT-1365) direction field of SSH::Info no longer populated

[ https://bro-tracker.atlassian.net/browse/BIT-1365?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1365: - Status: Merge Request (was: Open) direction field of SSH::Info no longer populated

[Bro-Dev] [JIRA] (BIT-1369) Kerberos Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1369?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1369: - Fix Version/s: 2.4 Kerberos Analyzer - Key: BIT-1369

[Bro-Dev] [JIRA] (BIT-1370) SIP Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1370: - Fix Version/s: 2.4 SIP Analyzer Key: BIT-1370

[Bro-Dev] [JIRA] (BIT-1370) SIP Analyzer

Vlad Grigorescu created BIT-1370: Summary: SIP Analyzer Key: BIT-1370 URL: https://bro-tracker.atlassian.net/browse/BIT-1370 Project: Bro Issue Tracker Issue Type: New Feature

[Bro-Dev] [JIRA] (BIT-1369) Kerberos Analyzer

Vlad Grigorescu created BIT-1369: Summary: Kerberos Analyzer Key: BIT-1369 URL: https://bro-tracker.atlassian.net/browse/BIT-1369 Project: Bro Issue Tracker Issue Type: New Feature

[Bro-Dev] [JIRA] (BIT-1344) New SSH Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20114#comment-20114 ] Vlad Grigorescu commented on BIT-1344: -- Fair enough. I'll get that added. New SSH

[Bro-Dev] [JIRA] (BIT-1344) New SSH Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20115#comment-20115 ] Vlad Grigorescu commented on BIT-1344: -- I committed a change to register the analyzer on

[Bro-Dev] [JIRA] (BIT-1344) New SSH Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu reassigned BIT-1344: Assignee: Johanna Amann (was: Vlad Grigorescu) New SSH Analyzer

[Bro-Dev] [JIRA] (BIT-1351) Rename the ASCII writer to file writer

[ https://bro-tracker.atlassian.net/browse/BIT-1351?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20102#comment-20102 ] grigorescu commented on BIT-1351: - No, this was just meant as a reminder. I don't think 2.4 is

[Bro-Dev] [JIRA] (BIT-1351) Rename the ASCII writer to file writer

[ https://bro-tracker.atlassian.net/browse/BIT-1351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Vlad Grigorescu updated BIT-1351: - Fix Version/s: 2.5 Rename the ASCII writer to file writer

[Bro-Dev] [JIRA] (BIT-755) Bogus DNS_truncated_ans_too_short notice in weird.log for NetBIOS DNS responses

[ https://bro-tracker.atlassian.net/browse/BIT-755?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-755: --- Resolution: Fixed Status: Closed (was: Open) Seth managed to dig up the trace, and I ran master

[Bro-Dev] [JIRA] (BIT-1351) Rename the ASCII writer to file writer

grigorescu created BIT-1351: --- Summary: Rename the ASCII writer to file writer Key: BIT-1351 URL: https://bro-tracker.atlassian.net/browse/BIT-1351 Project: Bro Issue Tracker Issue Type: Task

[Bro-Dev] [JIRA] (BIT-1031) add script based on BBN's Flow Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1031?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1031: Resolution: Rejected Status: Closed (was: Open) This script looks like it would require a

[Bro-Dev] [JIRA] (BIT-1032) add script based on BBN's Host Characterization

[ https://bro-tracker.atlassian.net/browse/BIT-1032?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1032: Resolution: Rejected Status: Closed (was: Open) This script looks like it would require a

[Bro-Dev] [JIRA] (BIT-1033) add script based on BBN's ICMP analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1033?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20045#comment-20045 ] grigorescu commented on BIT-1033: - I'd like to see this reimplemented with SumStats, but I

[Bro-Dev] [JIRA] (BIT-169) netstats fails

[ https://bro-tracker.atlassian.net/browse/BIT-169?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20031#comment-20031 ] grigorescu commented on BIT-169: I think we should close this, due to lack of response.

[Bro-Dev] [JIRA] (BIT-233) Python error when running `broctl cron`

[ https://bro-tracker.atlassian.net/browse/BIT-233?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20032#comment-20032 ] grigorescu commented on BIT-233: I believe that we can close this. The 4th field of df is

[Bro-Dev] [JIRA] (BIT-258) Removed duplicate login_non_failure_msgs from policy/login.bro

[ https://bro-tracker.atlassian.net/browse/BIT-258?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-258: --- Resolution: No longer applies Status: Closed (was: Open) policy/login.bro is no longer included with

[Bro-Dev] [JIRA] (BIT-529) Support for DLT IEEE802_11_RADIO linktype

[ https://bro-tracker.atlassian.net/browse/BIT-529?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20037#comment-20037 ] grigorescu commented on BIT-529: Seth, you want to take this one? Since you have

[Bro-Dev] [JIRA] (BIT-1343) Add Support for Including Common PAC Files

grigorescu created BIT-1343: --- Summary: Add Support for Including Common PAC Files Key: BIT-1343 URL: https://bro-tracker.atlassian.net/browse/BIT-1343 Project: Bro Issue Tracker Issue Type:

[Bro-Dev] [JIRA] (BIT-1344) New SSH Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1344: Status: Merge Request (was: Open) New SSH Analyzer Key: BIT-1344

[Bro-Dev] [JIRA] (BIT-1344) New SSH Analyzer

grigorescu created BIT-1344: --- Summary: New SSH Analyzer Key: BIT-1344 URL: https://bro-tracker.atlassian.net/browse/BIT-1344 Project: Bro Issue Tracker Issue Type: Improvement

[Bro-Dev] [JIRA] (BIT-947) Incorrect size calculation for SSH failed/successful heuristic

[ https://bro-tracker.atlassian.net/browse/BIT-947?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=20020#comment-20020 ] grigorescu commented on BIT-947: Yes - since the new SSH analyzer does away with the heuristic

[Bro-Dev] [JIRA] (BIT-678) Fix and test Bro's debugger

[ https://bro-tracker.atlassian.net/browse/BIT-678?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=19990#comment-19990 ] grigorescu commented on BIT-678: Do we know what the issues are? I was able to use the debugger

[Bro-Dev] [JIRA] (BIT-1336) ElasticSearch indices in UTC

grigorescu created BIT-1336: --- Summary: ElasticSearch indices in UTC Key: BIT-1336 URL: https://bro-tracker.atlassian.net/browse/BIT-1336 Project: Bro Issue Tracker Issue Type: Improvement

[Bro-Dev] [JIRA] (BIT-1285) MySQL Protocol Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1285?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1285: Status: Merge Request (was: Open) MySQL Protocol Analyzer ---

[Bro-Dev] [JIRA] (BIT-1285) MySQL Protocol Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1285?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=19401#comment-19401 ] grigorescu commented on BIT-1285: - Thanks for the suggestions, Robin. I think all of those make

[Bro-Dev] [JIRA] (BIT-1286) Add policy script for Windows version detection via CryptoAPI HTTP Traffic

[ https://bro-tracker.atlassian.net/browse/BIT-1286?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1286: Status: Merge Request (was: Open) Add policy script for Windows version detection via CryptoAPI HTTP

[Bro-Dev] [JIRA] (BIT-1286) Add policy script for Windows version detection via CryptoAPI HTTP Traffic

[ https://bro-tracker.atlassian.net/browse/BIT-1286?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=18702#comment-18702 ] grigorescu commented on BIT-1286: - Forgot to mention the branch :-). It's in

[Bro-Dev] [JIRA] (BIT-924) String BIFs Return 1-indexed string_arrays

[ https://bro-tracker.atlassian.net/browse/BIT-924?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=18615#comment-18615 ] grigorescu commented on BIT-924: I think more generally, we want a good way to be able to make

[Bro-Dev] [JIRA] (BIT-1285) MySQL Protocol Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1285?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1285: Status: Merge Request (was: Open) MySQL Protocol Analyzer ---

[Bro-Dev] [JIRA] (BIT-1208) Unused Weirds

grigorescu created BIT-1208: --- Summary: Unused Weirds Key: BIT-1208 URL: https://bro-tracker.atlassian.net/browse/BIT-1208 Project: Bro Issue Tracker Issue Type: Task Components: Bro

[Bro-Dev] [JIRA] (BIT-459) Test Ticket

[ https://bro-tracker.atlassian.net/browse/BIT-459?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-459: --- Status: Reopened (was: Closed) Test Ticket --- Key: BIT-459

[Bro-Dev] [JIRA] (BIT-682) Beta Documentation Pages Broken

[ https://bro-tracker.atlassian.net/browse/BIT-682?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-682: --- Status: Reopened (was: Closed) Beta Documentation Pages Broken ---

[Bro-Dev] [JIRA] (BIT-933) Test ticket

[ https://bro-tracker.atlassian.net/browse/BIT-933?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-933: --- Resolution: Fixed Status: Closed (was: Reopened) Fixing ticket: it was closed but marked as

[Bro-Dev] [JIRA] (BIT-933) Test ticket

[ https://bro-tracker.atlassian.net/browse/BIT-933?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-933: --- Status: Reopened (was: Closed) Test ticket --- Key: BIT-933

[Bro-Dev] [JIRA] (BIT-1202) Segfault with double redef of table[subnet] of subnet

grigorescu created BIT-1202: --- Summary: Segfault with double redef of table[subnet] of subnet Key: BIT-1202 URL: https://bro-tracker.atlassian.net/browse/BIT-1202 Project: Bro Issue Tracker Issue

[Bro-Dev] [JIRA] (BIT-1200) CloneSerializer cannot handle recursive records

grigorescu created BIT-1200: --- Summary: CloneSerializer cannot handle recursive records Key: BIT-1200 URL: https://bro-tracker.atlassian.net/browse/BIT-1200 Project: Bro Issue Tracker Issue Type:

[Bro-Dev] [JIRA] (BIT-1198) Input framework's READER_ASCII can't handle DOS files

grigorescu created BIT-1198: --- Summary: Input framework's READER_ASCII can't handle DOS files Key: BIT-1198 URL: https://bro-tracker.atlassian.net/browse/BIT-1198 Project: Bro Issue Tracker Issue

[Bro-Dev] [JIRA] (BIT-1199) Better error messages for input file errors in READER_ASCII

grigorescu created BIT-1199: --- Summary: Better error messages for input file errors in READER_ASCII Key: BIT-1199 URL: https://bro-tracker.atlassian.net/browse/BIT-1199 Project: Bro Issue Tracker

[Bro-Dev] [JIRA] (BIT-250) Binpac wrong boundary check

[ https://bro-tracker.atlassian.net/browse/BIT-250?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-250: --- Status: Merge Request (was: Open) Binpac wrong boundary check ---

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=16501#comment-16501 ] grigorescu commented on BIT-1129: - Sorry for the delay... - expiration logic fixed -

[Bro-Dev] [JIRA] (BIT-1129) RADIUS Protocol Analyzer

[ https://bro-tracker.atlassian.net/browse/BIT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] grigorescu updated BIT-1129: Status: Merge Request (was: Open) RADIUS Protocol Analyzer

  1   2   >