zeek-long-connections icon indicating copy to clipboard operation
zeek-long-connections copied to clipboard

Published 20 hours ago verified publisher icon corelight

Metadata

Zeek package for tracking long connections to report them before they have completed.

Results 2 zeek-long-connections issues
Sort by recently updated
recently updated
newest added

No conn_long entries for idle connections

When configuring this package with: ``` redef LongConnections::default_durations=LongConnection::Durations(5sec); redef LongConnection::repeat_last_duration = T; ``` Initial expectation was that a hanging `nc -4 localhost 8080` to a `nc -l -p 8080` would...

awelzel avatar awelzel

Duplicate conn_long.log entries.

I sometimes see exact duplicate log entries for a connection in conn_long.log. I've seen this in Zeek 6.01 and 6.2. A detailed discussion is on Slack https://zeekorg.slack.com/archives/CSZBXF6TH/p1714741043670259. For example, below...

ghuband avatar ghuband

Metadata

26
Stars
20
Forks
Watchers

Owner

verified publisher icon corelight

Metadata

Zeek package for tracking long connections to report them before they have completed.

Back