[Bro] ignoring ContentGap and friends
0100
suroot at gmail.com
Mon Dec 8 12:09:15 PST 2008
Hi.
New to bro so this is probably a dumb question.
I'm following the instructions here (
http://www.bro-ids.org/wiki/index.php/User_Manual:_Customizing_Bro) on how
to squelch the ContentGap and various other messages. Here's my config file:
@load bittorrent
@load bt-tracker
redef notice_action_filters += {
WeirdActivity, ContentGap = ignore_notice,
};
When I run this, I get:
Line 6: error: unknown identifier WeirdActivity, at or near "WeirdActivity"
I couldn't figure out if these have been renamed or what?
Thanks for the help...
0100
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20081208/b116719b/attachment.html
More information about the Bro
mailing list