skip_remote_sensitive_URIs : pattern
URIs matching this pattern should not be considered sensitive if accessed remotely, i.e., by a local client.
have_skip_remote_sensitive_URIs : bool
Due to a quirk in Bro, this must be redef'ed to T if you want to useskip_remote_sensitive_URIs
.
Note: This variable isconst
, so may only be changed viaredef
.
sensitive_URIs : pattern
URIs matching this pattern, but not matchingworm_URIs
, are logged. See alsoskip_remote_sensitive_URIs
andsenstive_post_URIs
.
Note: This variable isconst
, so may only be changed viaredef
.
worm_URIs : pattern
URIs matching this pattern are not logged even if they matchsensitive_URIs
, since worms are so common they would clutter the logs.
Note: This variable isconst
, so may only be changed viaredef
.
sensitive_post_URIs : pattern
URIs matching this pattern are logged if they are used with the HTTP “POST” method (rather than “GET”).
Note: This variable isconst
, so may only be changed viaredef
.