[Bro-Dev] #23: DNS log format is hard to parse
Bro Tracker
bro-dev at bro-ids.org
Tue Nov 16 09:24:38 PST 2010
#23: DNS log format is hard to parse
------------------------------+---------------------------------------------
Reporter: vern | Owner: seth
Type: Feature Request | Status: assigned
Priority: Normal | Milestone: Bro1.6
Component: Bro | Version:
Resolution: | Keywords:
------------------------------+---------------------------------------------
Comment (by gregor):
I general, it might also be worth considering whether the events the
analyzer generates should be cleaned up. Currently the analyzer generates
one event per RR and one has to have a handler for each in order to
analyze the whole DNS reply. Maybe something for the binpac++ DNS
analyzer.
--
Ticket URL: <http://tracker.icir.org/bro/ticket/23#comment:3>
Bro Tracker <http://tracker.icir.org/bro>
Bro Issue Tracker
More information about the bro-dev
mailing list