Justin

We ran into this again the other day after doing an upgrade on the switch. The underlying problem is likely in the jsonrpc lib somewhere, but having a global watchdog...

using zeekctl deploy like that in docker is never going to work right. You either just want to set the `command` to something like zeek -i en0 local or use...

You do not need to run `zeekctl deploy`. I will work on just removing zeekctl from the containers, it isn't needed and it will never work right.

You're not running a cluster, there's nothing to deploy. Just run zeek.

@grigorescu I think you can help with this if you get a chance.

Wonder if we need something like ``` reporter->DeferredExitError ``` or such.. probably a better name :-) something that logs an error and sets an exit code variable as failed, so...

FWIW, 4294967296 is `100000000000000000000000000000000` in binary. I've seen these connections off and on but have never been able to capture a pcap of it happening in the wild. I've wondered...

fwiw in python there's the not often used `frozenset` for this exact use case: ``` >>> x = {} >>> s = frozenset([1,2,3]) >>> x[s] = 1 >>> x {frozenset({1,...

I still like the idea of ``` @if ( can_load("the-package") ) @load the-package @endif ``` Comparing the return value to "" seems a bit awkward. Is there a use case...

Well detect-mhr specifically is potentially very relevant. That script does one thing: look for downloads of a certain mime type: https://github.com/zeek/zeek/blob/master/scripts/policy/frameworks/files/detect-MHR.zeek#L18-L24 Then for any matches it looks up the file...