[Bro] files.log need to add id [orig_h,p and resp_h,p]

ps sunu pssunu6 at gmail.com
Tue Jan 31 04:29:25 PST 2017


Hi,
                 I need to add id [orig_h,orig_p, resp_h, resp_p]  in
files.log , so i tried to
add the content into opt/bro/share/bro/base/frameworks/files/main.bro  but
its not accepting.

 I added below code into main.bro

 id: conn_id     &log;


and


function set_info(f: fa_file)
        {
        if ( ! f?$info )
                {
                local tmp: Info = Info($ts=f$last_active,$fuid=f$id,
$id=f$conns);

                f$info = tmp;
  print "test",f$conns;
                }



any other way to do this , ??
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20170131/f534bb21/attachment.html 


More information about the Bro mailing list