[Bro-Dev] #368: Patch for Reverse DNS Lookups and DNS TTL support
Bro Tracker
bro at tracker.icir.org
Wed Feb 9 02:13:14 PST 2011
#368: Patch for Reverse DNS Lookups and DNS TTL support
---------------------------+-----------------------------
Reporter: thomas.other | Owner:
Type: Patch | Status: new
Priority: Normal | Milestone:
Component: Bro | Version: 1.5.2
Resolution: | Keywords: DNS TTL Resolve
---------------------------+-----------------------------
Comment (by thomas.other):
The initially submitted '''resolve.patch''' had following flaws, it was:
1. Reimplementing DNS lookup functionality for bro scripts
2. Doing so in a synchronous (blocking) way
Therefore it was abandoned in favor of the already present 'when( host =
lookup_addr( someip ) ) { ... }' constructs, which use asynchronous DNS
queries (that won't stall bro execution during DNS lookups).
The initially submitted '''dnsttl.patch''' was extended and does now
provide TTL checking for async DNS lookup functions as well.
--
Ticket URL: <http://tracker.icir.org/bro/ticket/368#comment:1>
Bro Tracker <http://tracker.icir.org/bro>
Bro Issue Tracker
More information about the bro-dev
mailing list