[Bro] Log::add_filter with mime_type or filename predicate

Seth Hall seth at icir.org
Mon Sep 30 13:40:01 PDT 2013


On Sep 30, 2013, at 3:08 PM, "Thomas, Eric D" <edthoma at sandia.gov> wrote:

> # This line was in the predicate function, but it no longer works
> # return rec?$mime_type && rec$mime_type == "application/x-dosexec"; },


return rec?$resp_mime_types && "application/x-dosexec" in rec$resp_mime_types;

  .Seth

--
Seth Hall
International Computer Science Institute
(Bro) because everyone has a network
http://www.bro.org/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20130930/1786024f/attachment.bin 


More information about the Bro mailing list