[Bro] Disable Log Stream but not the analyzers

[Michał Purzyński]

Indeed, scripts you’re showing depend on the log streams you just disabled.

> On Nov 22, 2018, at 12:39 AM, Alex Kefallonitis <al.kefallonitis at gmail.com> wrote:
> 
> 
> Hi i did change it but no logs regarding http are produced like https://raw.githubusercontent.com/sethhall/bro-scripts/master/top-websites.bro or https://github.com/BrashEndeavours/bro-scripts/blob/master/http_entropy.bro .
> 
> 
> <image.png>
> 
> <image.png>
> 
> Στις Τετ, 21 Νοε 2018 στις 11:03 μ.μ., ο/η Azoff, Justin S <jazoff at illinois.edu> έγραψε:
>> Hi,
>> 
>> Using 
>> 
>>     Log::remove_default_filter(HTTP::LOG);
>> 
>> instead of disable_stream should do what you want.
>> From: bro-bounces at bro.org <bro-bounces at bro.org> on behalf of Alex Kefallonitis <al.kefallonitis at gmail.com>
>> Sent: Wednesday, November 21, 2018 4:28:32 AM
>> To: Bro at bro.org
>> Subject: [Bro] Disable Log Stream but not the analyzers
>>  
>> I have disabled the Log Stream for HTTP :
>> 
>> event bro_init()
>>   {
>>     Log::disable_stream(HTTP::LOG);
>>  }
>> 
>> But i want scripts using HTTP protocol to work e.g https://raw.githubusercontent.com/sethhall/bro-scripts/master/top-websites.bro
>> 
>> Is there any other way to do it ?
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20181122/39fbaf6b/attachment.html