Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ZeroMQ Json Output #2

Merged
merged 2 commits into from
Feb 1, 2014
Merged

ZeroMQ Json Output #2

merged 2 commits into from
Feb 1, 2014

Conversation

jrossi
Copy link
Member

@jrossi jrossi commented Jan 25, 2014

This is a complete patch that will allow the outputing of all alerts
to a zeromq PUB socket in JSON format.

New Config:

<ossec>
  <global>
      <zeromq_output>yes|no</zeromq_output>
      <zeromq_uri>tcp://localhost:11111</zeromq_uri>

Somethings had to change to allow this to work. Based on the
preprossor defines

  • WINDOWS was redefined by OSSEC and is used by GCC changed
    the define to to DECODER_WINDOWS
  • __name was redefinied by OSSEC and is used by GCC changed
    the defeine to be __ossec_name

jrossi added 2 commits January 25, 2014 18:30
@jrossi
ZeroMQ Json Output
01b2349 
This is a complete patch that will allow the outputing of all alerts
to a zeromq PUB socket in JSON format.

New Config:
<ossec>
  <global>
      <zeromq_output>yes|no</zeromq_output>
          <zeromq_uri>tcp://localhost:11111</zeromq_uri>

Somethings had to change to allow this to work.  Based on the
preprossor defines
- WINDOWS was redefined by OSSEC and is used by GCC changed
  the define to to DECODER_WINDOWS
- __name was redefinied by OSSEC and is used by GCC changed
  the defeine to be __ossec_name
@jrossi
strcmp test was incorrect and would not correctly add the data
2d6551f
@ghost ghost assigned jbcheng Jan 25, 2014
@jrossi
Copy link
Member Author

jrossi commented Jan 29, 2014

Does anyone have any questions? This should be low impact change the code paths are well know and requires a custom make setzeromq to enable.

@jrossi
Copy link
Member Author

jrossi commented Jan 30, 2014

Does anyone have an questions about this pull request? @ddpbsd @jbcheng ?

@jrossi jrossi mentioned this pull request Jan 31, 2014
Closed
@jbcheng
Copy link
Contributor

jbcheng commented Feb 1, 2014

No objection. I am going to Merge this one.

jbcheng added a commit that referenced this pull request Feb 1, 2014
@jbcheng
Merge pull request #2 from jrossi/output-zeromq-json
eeba817 
ZeroMQ Json Output merged.
@jbcheng jbcheng merged commit eeba817 into ossec:master Feb 1, 2014
@jrossi
Copy link
Member Author

jrossi commented Feb 1, 2014

Great. I will open a pull request to update the docs. I will have more with this json Stuff coming.

Sent from my iPhone

On Jan 31, 2014, at 8:06 PM, "JB Cheng" [email protected] wrote:

Merged #2.


Reply to this email directly or view it on GitHub.

This was referenced Feb 1, 2014
Closed
Merged
@jrossi jrossi deleted the output-zeromq-json branch February 2, 2014 03:49
ddpbsd pushed a commit that referenced this pull request Feb 25, 2014
@cgzones
Merge pull request #2 from ossec/master
091a58d 
sync fork
jrossi added a commit that referenced this pull request Apr 25, 2014
@jrossi
Merge pull request #191 from cgzones/os_regex_unittests2
f4616d0 
os_regex unit tests #2
jrossi added a commit that referenced this pull request Oct 7, 2014
@jrossi
Merge pull request #2 from cgzones/makefile-need-love-too
7e921b7 
improve makefile:
jrossi added a commit that referenced this pull request Oct 7, 2014
@jrossi
Merge pull request #3 from cgzones/makefile-need-love-too
e0a1fb0 
my suggestions #2
cgzones added a commit that referenced this pull request Oct 9, 2014
@cgzones
[os_execd] fix windows build #2
93ad0a3
cgzones added a commit that referenced this pull request Feb 5, 2015
@cgzones
fix travis #2
2c6dfab
cgzones added a commit that referenced this pull request Feb 6, 2015
@cgzones
fix .travis.yml file #2
2b16ec0
ddpbsd pushed a commit that referenced this pull request Sep 29, 2015
@brentmorris253
Merge pull request #2 from brentmorris253/brentmorris253-patch-2
a02b750 
Fix truncated "action" on Cisco PIX/ASA
cgzones added a commit to cgzones/ossec-hids that referenced this pull request Jan 2, 2018
@cgzones
debian package ossec#2
17c2846
cgzones added a commit to cgzones/ossec-hids that referenced this pull request Jan 2, 2018
@cgzones
debian package ossec#2
439493a
@fgrosse19 fgrosse19 mentioned this pull request Sep 14, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@jbcheng jbcheng

Labels
None yet
Projects
None yet
Milestone
ossec-hids-3.0
Development

Successfully merging this pull request may close these issues.
2 participants
@jrossi @jbcheng