[GitHub] incubator-metron pull request #302: METRON-492 Run metron_common build check...

GitHub user kylerichardson opened a pull request: https://github.com/apache/incubator-metron/pull/302 METRON-492 Run metron_common build check as local_action When testing various deployment options, noticed the logic for the metron_common role didn't work as expected. Updated to

[GitHub] incubator-metron pull request #276: METRON-363 Fix Cisco ASA Parser

Github user kylerichardson commented on a diff in the pull request: https://github.com/apache/incubator-metron/pull/276#discussion_r82490277 --- Diff: metron-platform/metron-parsers/src/main/java/org/apache/metron/parsers/utils/SyslogUtils.java --- @@ -0,0 +1,89 @@ +/** +

[GitHub] incubator-metron pull request #276: METRON-363 Fix Cisco ASA Parser

Github user kylerichardson commented on a diff in the pull request: https://github.com/apache/incubator-metron/pull/276#discussion_r82489921 --- Diff: metron-platform/metron-parsers/src/main/java/org/apache/metron/parsers/utils/SyslogUtils.java --- @@ -0,0 +1,89 @@ +/** +

[GitHub] incubator-metron pull request #289: METRON-461: Install Metron Data Manageme...

Github user asfgit closed the pull request at: https://github.com/apache/incubator-metron/pull/289 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the

[GitHub] incubator-metron pull request #294: METRON-487: Correct the license in the S...

Github user asfgit closed the pull request at: https://github.com/apache/incubator-metron/pull/294 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the

[GitHub] incubator-metron pull request #292: METRON-171 add .class to .gitignore

Github user asfgit closed the pull request at: https://github.com/apache/incubator-metron/pull/292 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the

Re: community demo tomorrow

Hi James, My apologies for missing/forgetting about those threads. It looks like you guys are doing the right thing. -Taylor > On Oct 6, 2016, at 10:11 PM, James Sirota wrote: > > Hi Taylor, > > We setup a recurring demo meeting to run twice a month last month per this

[GitHub] incubator-metron pull request #301: METRON-490 Stellar Validation of Require...

GitHub user nickwallen opened a pull request: https://github.com/apache/incubator-metron/pull/301 METRON-490 Stellar Validation of Required Parameters ### [METRON-490](https://issues.apache.org/jira/browse/METRON-490) Currently, each Stellar function handles validation of

[GitHub] incubator-metron issue #298: METRON-432: Fix pcap field resolver to return o...

Github user james-sirota commented on the issue: https://github.com/apache/incubator-metron/pull/298 this is a fairly minor change, but makes sense. +1 builds, passes tests --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as

[GitHub] incubator-metron pull request #276: METRON-363 Fix Cisco ASA Parser

Github user james-sirota commented on a diff in the pull request: https://github.com/apache/incubator-metron/pull/276#discussion_r82446542 --- Diff: metron-platform/metron-common/src/main/java/org/apache/metron/common/Constants.java --- @@ -43,6 +43,7 @@

[GitHub] incubator-metron issue #292: METRON-171 add .class to .gitignore

Github user james-sirota commented on the issue: https://github.com/apache/incubator-metron/pull/292 +1 by inspection. thanks for catching this --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not

[GitHub] incubator-metron issue #295: METRON-371: Changing logging level to INFO when...

Github user james-sirota commented on the issue: https://github.com/apache/incubator-metron/pull/295 +1 by inspection --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled

[GitHub] incubator-metron issue #297: METRON-488: Snort should use a proper CSV imple...

Github user james-sirota commented on the issue: https://github.com/apache/incubator-metron/pull/297 Does the same apply to other parsers as well? or just snort? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your

[GitHub] incubator-metron pull request #300: METRON-489: RemoveSubdomains Stellar Fun...

Github user james-sirota commented on a diff in the pull request: https://github.com/apache/incubator-metron/pull/300#discussion_r82441035 --- Diff: metron-platform/metron-common/src/main/java/org/apache/metron/common/dsl/functions/NetworkFunctions.java --- @@ -78,13 +78,16 @@

[GitHub] incubator-metron pull request #299: METRON-425 Stellar transformation fails ...

Github user asfgit closed the pull request at: https://github.com/apache/incubator-metron/pull/299 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the

[GitHub] incubator-metron issue #299: METRON-425 Stellar transformation fails to hand...

Github user justinleet commented on the issue: https://github.com/apache/incubator-metron/pull/299 +1, I'm satisfied updating the docs and the unit test addresses the original concern seen. --- If your project is set up for it, you can reply to this email and have your reply appear

[GitHub] incubator-metron issue #278: Metron 451 SerDeUtils - java.lang.ClassNotFound...

Github user danieljue commented on the issue: https://github.com/apache/incubator-metron/pull/278 Roger that, will devise a test. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature

[GitHub] incubator-metron pull request #275: METRON-459 Bad file location for org.apa...

Github user asfgit closed the pull request at: https://github.com/apache/incubator-metron/pull/275 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the

[GitHub] incubator-metron issue #275: METRON-459 Bad file location for org.apache.met...

Github user nickwallen commented on the issue: https://github.com/apache/incubator-metron/pull/275 This one is good to go. Thank you for the contribution! 👍 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your

Ambari Mpack

I've been working with the Ambari Mpack on a live cluster over the past couple days. Realizing that we're in the very early iterations and need some time to polish up the rough edges, I am very impressed with the work that has been done so far. The user experience is light years beyond our

[GitHub] incubator-metron issue #299: METRON-425 Stellar transformation fails to hand...

Github user justinleet commented on the issue: https://github.com/apache/incubator-metron/pull/299 To validate Casey's point, I just ran a quickly modified version of your unit test with things single quotes, and things seem to line up quite nicely at that point on special chars and

[GitHub] incubator-metron pull request #300: METRON-489: RemoveSubdomains Stellar Fun...

Github user justinleet commented on a diff in the pull request: https://github.com/apache/incubator-metron/pull/300#discussion_r82378741 --- Diff: metron-platform/metron-common/src/main/java/org/apache/metron/common/dsl/functions/NetworkFunctions.java --- @@ -78,13 +78,16 @@

Re: [DISCUSS] Opinionated Data Flows

Whether it is explicit or implicit, I think that would be one of the major benefits of having the expressiveness of a DSL. I can choose to have some enrichments run in parallel (the split/join that you are referring to) or have some enrichment runs serially. Having enrichments run serially is

[GitHub] incubator-metron pull request #297: METRON-488: Snort should use a proper CS...

GitHub user cestella reopened a pull request: https://github.com/apache/incubator-metron/pull/297 METRON-488: Snort should use a proper CSV implementation Right now if you have a custom snort rule (e.g. alert tcp any any -> any any (msg:'snort alert message having a ,(comma) to

[GitHub] incubator-metron pull request #300: METRON-489: RemoveSubdomains Stellar Fun...

GitHub user cestella opened a pull request: https://github.com/apache/incubator-metron/pull/300 METRON-489: RemoveSubdomains Stellar Function behaves incorrectly for some domains com.com throws an exception www.subdomain.com.com returns subdomain.com Unsure if other