[jira] [Updated] (METRON-1107) add support for handling epoch dates in seconds or milliseconds

[ https://issues.apache.org/jira/browse/METRON-1107?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1107: --- Summary: add support for handling epoch dates in seconds or milliseconds (was: DAY_OF_{YEAR,MONTH}

[jira] [Created] (METRON-1107) DAY_OF_{YEAR,MONTH} stellar functions return incorrect results

Jon Zeolla created METRON-1107: -- Summary: DAY_OF_{YEAR,MONTH} stellar functions return incorrect results Key: METRON-1107 URL: https://issues.apache.org/jira/browse/METRON-1107 Project: Metron

[jira] [Commented] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16071675#comment-16071675 ] Jon Zeolla commented on METRON-984: --- +1 didn't know that existed, good deal. > Create Stellar Decoding

[jira] [Commented] (METRON-1010) Reorganize the bro elasticsearch template

[ https://issues.apache.org/jira/browse/METRON-1010?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16072868#comment-16072868 ] Jon Zeolla commented on METRON-1010: Yeah, that is another option, but I feel like it could be pretty

[jira] [Commented] (METRON-809) Error while running metron_full_install.yml

[ https://issues.apache.org/jira/browse/METRON-809?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16075076#comment-16075076 ] Jon Zeolla commented on METRON-809: --- Can you please give this another try with 0.4.0? > Error while

[jira] [Created] (METRON-904) service sensor-stub restart is broken

Jon Zeolla created METRON-904: - Summary: service sensor-stub restart is broken Key: METRON-904 URL: https://issues.apache.org/jira/browse/METRON-904 Project: Metron Issue Type: Bug

[jira] [Assigned] (METRON-348) bro-plugin-kafka is missing an important update

[ https://issues.apache.org/jira/browse/METRON-348?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-348: - Assignee: Jon Zeolla > bro-plugin-kafka is missing an important update >

[jira] [Commented] (METRON-348) bro-plugin-kafka is missing an important update

[ https://issues.apache.org/jira/browse/METRON-348?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15981957#comment-15981957 ] Jon Zeolla commented on METRON-348: --- This has been eclipsed by METRON-858 and METRON-883. >

[jira] [Commented] (METRON-508) Expand Elasticsearch templates to support the standard bro logs

[ https://issues.apache.org/jira/browse/METRON-508?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15989024#comment-15989024 ] Jon Zeolla commented on METRON-508: --- We should also improve the tokenization to be more sane. For

[jira] [Assigned] (METRON-559) Update vagrant OS

[ https://issues.apache.org/jira/browse/METRON-559?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-559: - Assignee: Jon Zeolla > Update vagrant OS > - > > Key: METRON-559

[jira] [Assigned] (METRON-939) Upgrade ElasticSearch and Kibana

[ https://issues.apache.org/jira/browse/METRON-939?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-939: - Assignee: Jon Zeolla > Upgrade ElasticSearch and Kibana > > >

[jira] [Updated] (METRON-939) Upgrade ElasticSearch and Kibana

[ https://issues.apache.org/jira/browse/METRON-939?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-939: -- Description: Upgrade ElasticSearch and Kibana (latest is 5.4 as of writing this). Among other

[jira] [Updated] (METRON-959) Trivial documentation formatting bugs

[ https://issues.apache.org/jira/browse/METRON-959?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-959: -- Summary: Trivial documentation formatting bugs (was: Trivial documentation formatting bug) > Trivial

[jira] [Updated] (METRON-959) Trivial documentation formatting bug

[ https://issues.apache.org/jira/browse/METRON-959?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-959: -- Description: Fix some trivial documentation formatting bugs scattered across README.md files (was: Fix

[jira] [Created] (METRON-959) Trivial documentation formatting bug

Jon Zeolla created METRON-959: - Summary: Trivial documentation formatting bug Key: METRON-959 URL: https://issues.apache.org/jira/browse/METRON-959 Project: Metron Issue Type: Improvement

[jira] [Updated] (METRON-717) Move site.xml to .gitignore, and create site.xml.template as the tracked file

[ https://issues.apache.org/jira/browse/METRON-717?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-717: -- Fix Version/s: (was: 0.3.2) 0.4 > Move site.xml to .gitignore, and create

[jira] [Updated] (METRON-719) use of quadruple back-ticks in README.md file

[ https://issues.apache.org/jira/browse/METRON-719?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-719: -- Fix Version/s: (was: 0.3.2) 0.4 > use of quadruple back-ticks in README.md file

[jira] [Updated] (METRON-720) modify generate-md.sh to re-throw errors from within 'find'

[ https://issues.apache.org/jira/browse/METRON-720?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-720: -- Fix Version/s: (was: 0.3.2) 0.4 > modify generate-md.sh to re-throw errors from

[jira] [Updated] (METRON-764) DST bug in metron-profiler-client Unit Tests

[ https://issues.apache.org/jira/browse/METRON-764?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-764: -- Fix Version/s: (was: 0.3.2) 0.4 > DST bug in metron-profiler-client Unit Tests >

[jira] [Updated] (METRON-912) Metron vagrant setup steps no longer work

[ https://issues.apache.org/jira/browse/METRON-912?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-912: -- Fix Version/s: 0.4.0 > Metron vagrant setup steps no longer work >

[jira] [Created] (METRON-984) Create Stellar Decoding Functions

Jon Zeolla created METRON-984: - Summary: Create Stellar Decoding Functions Key: METRON-984 URL: https://issues.apache.org/jira/browse/METRON-984 Project: Metron Issue Type: Improvement

[jira] [Updated] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-984: -- Description: It is rather commonplace for malicious actors to obfuscate exploits or data transfers

[jira] [Created] (METRON-985) Use named parameters in Stellar functions

Jon Zeolla created METRON-985: - Summary: Use named parameters in Stellar functions Key: METRON-985 URL: https://issues.apache.org/jira/browse/METRON-985 Project: Metron Issue Type: Improvement

[jira] [Commented] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16037230#comment-16037230 ] Jon Zeolla commented on METRON-984: --- RE: the per-decoding function, that's fine. I was thinking that it

[jira] [Commented] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16037398#comment-16037398 ] Jon Zeolla commented on METRON-984: --- Yeah, I can buy into that for a first pass. Thanks > Create

[jira] [Updated] (METRON-999) Add virtualization support checks to platform-info.sh

[ https://issues.apache.org/jira/browse/METRON-999?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-999: -- Issue Type: Improvement (was: Bug) > Add virtualization support checks to platform-info.sh >

[jira] [Created] (METRON-999) Add virtualization support checks to platform-info.sh

Jon Zeolla created METRON-999: - Summary: Add virtualization support checks to platform-info.sh Key: METRON-999 URL: https://issues.apache.org/jira/browse/METRON-999 Project: Metron Issue Type:

[jira] [Updated] (METRON-908) Improve ES indexing for bro logs

[ https://issues.apache.org/jira/browse/METRON-908?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-908: -- Description: Right now ES indexing is rather simple. Because we know the schema of the bro logs, we

[jira] [Created] (METRON-908) Improve ES indexing for bro logs

Jon Zeolla created METRON-908: - Summary: Improve ES indexing for bro logs Key: METRON-908 URL: https://issues.apache.org/jira/browse/METRON-908 Project: Metron Issue Type: Improvement

[jira] [Issue Comment Deleted] (METRON-518) Add performance tuning settings to Elasticsearch

[ https://issues.apache.org/jira/browse/METRON-518?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-518: -- Comment: was deleted (was: We should also consider better tokenizers for some fields such as

[jira] [Updated] (METRON-908) Improve ES indexing for bro logs

[ https://issues.apache.org/jira/browse/METRON-908?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-908: -- Description: Right now ES indexing is rather simple. Because we know the schema of the bro logs, we

[jira] [Commented] (METRON-508) Expand Elasticsearch templates to support the standard bro logs

[ https://issues.apache.org/jira/browse/METRON-508?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15992876#comment-15992876 ] Jon Zeolla commented on METRON-508: --- I'm in the process of writing all of that up and testing my

[jira] [Commented] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16037495#comment-16037495 ] Jon Zeolla commented on METRON-984: --- Per our discussion, I think we landed on the following two

[jira] [Commented] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16037563#comment-16037563 ] Jon Zeolla commented on METRON-984: --- My assumption is that you can test to see if it's possible to

[jira] [Updated] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-984: -- When performing a function over attacker controlled data I would consider it required to do some sort of

[jira] [Updated] (METRON-984) Create Stellar Decoding Functions

[ https://issues.apache.org/jira/browse/METRON-984?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-984: -- Yeah that sounds reasonable to me. Jon -- Jon > Create Stellar Decoding Functions >

[jira] [Updated] (METRON-1173) Fix pointers to old stellar docs

[ https://issues.apache.org/jira/browse/METRON-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1173: --- Fix Version/s: Next + 1 > Fix pointers to old stellar docs > > >

[jira] [Created] (METRON-1251) Typo and formatting fixes for metron-rest README

Jon Zeolla created METRON-1251: -- Summary: Typo and formatting fixes for metron-rest README Key: METRON-1251 URL: https://issues.apache.org/jira/browse/METRON-1251 Project: Metron Issue Type:

[jira] [Created] (METRON-1173) Remove monit from the deployment-report

Jon Zeolla created METRON-1173: -- Summary: Remove monit from the deployment-report Key: METRON-1173 URL: https://issues.apache.org/jira/browse/METRON-1173 Project: Metron Issue Type: Bug

[jira] [Assigned] (METRON-1173) Remove monit from the deployment-report

[ https://issues.apache.org/jira/browse/METRON-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1173: -- Assignee: Jon Zeolla > Remove monit from the deployment-report >

[jira] [Updated] (METRON-1173) Fix pointers to old stellar code

[ https://issues.apache.org/jira/browse/METRON-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1173: --- Summary: Fix pointers to old stellar code (was: Remove monit from the deployment-report) > Fix

[jira] [Updated] (METRON-1173) Fix pointers to old stellar code

[ https://issues.apache.org/jira/browse/METRON-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1173: --- Description: Stellar was moved out from metron-common, but some READMEs still point to the old

[jira] [Updated] (METRON-1173) Fix pointers to old stellar docs

[ https://issues.apache.org/jira/browse/METRON-1173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1173: --- Summary: Fix pointers to old stellar docs (was: Fix pointers to old stellar code) > Fix pointers

[jira] [Assigned] (METRON-1107) add support for handling epoch dates in seconds or milliseconds

[ https://issues.apache.org/jira/browse/METRON-1107?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1107: -- Assignee: (was: Otto Fowler) > add support for handling epoch dates in seconds or

[jira] [Created] (METRON-1144) [STELLAR] Align date function starting values

Jon Zeolla created METRON-1144: -- Summary: [STELLAR] Align date function starting values Key: METRON-1144 URL: https://issues.apache.org/jira/browse/METRON-1144 Project: Metron Issue Type:

[jira] [Updated] (METRON-1144) [STELLAR] Align date function starting values

[ https://issues.apache.org/jira/browse/METRON-1144?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1144: --- Description: Currently, the DAY_OF_* date functions start at 1, but MONTH starts at 0, which is

[jira] [Updated] (METRON-1107) add support for handling epoch dates in seconds or milliseconds

[ https://issues.apache.org/jira/browse/METRON-1107?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1107: --- Description: While testing METRON-1091 I found that the DAY_OF_* functions don't accept non-milli

[jira] [Updated] (METRON-1107) [STELLAR] add support for handling epoch dates in seconds or milliseconds

[ https://issues.apache.org/jira/browse/METRON-1107?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1107: --- Summary: [STELLAR] add support for handling epoch dates in seconds or milliseconds (was: add

[jira] [Commented] (METRON-872) "Metron Enrichment Start" Fails in Quick Dev

[ https://issues.apache.org/jira/browse/METRON-872?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149415#comment-16149415 ] Jon Zeolla commented on METRON-872: --- Just connecting two disconnected data sets here - it appears at

[jira] [Created] (METRON-1246) elasticsearch fails to run as a non-default user w/systemd

Jon Zeolla created METRON-1246: -- Summary: elasticsearch fails to run as a non-default user w/systemd Key: METRON-1246 URL: https://issues.apache.org/jira/browse/METRON-1246 Project: Metron

[jira] [Assigned] (METRON-1251) Typo and formatting fixes for metron-rest README

[ https://issues.apache.org/jira/browse/METRON-1251?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1251: -- Assignee: Jon Zeolla > Typo and formatting fixes for metron-rest README >

[jira] [Updated] (METRON-1088) Upgrade bro to the latest release

[ https://issues.apache.org/jira/browse/METRON-1088?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1088: --- Summary: Upgrade bro to the latest release (was: Upgrade bro to 2.5.2) > Upgrade bro to the latest

[jira] [Assigned] (METRON-1261) Apply bro security patch

[ https://issues.apache.org/jira/browse/METRON-1261?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1261: -- Assignee: Jon Zeolla > Apply bro security patch > > >

[jira] [Created] (METRON-1261) Apply bro security patch

Jon Zeolla created METRON-1261: -- Summary: Apply bro security patch Key: METRON-1261 URL: https://issues.apache.org/jira/browse/METRON-1261 Project: Metron Issue Type: Bug Reporter:

[jira] [Updated] (METRON-1088) Upgrade bro to 2.5.2

[ https://issues.apache.org/jira/browse/METRON-1088?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1088: --- Description: Upgrade bro from 2.4.2 to the latest release. (was: Upgrade bro from 2.4.1 to 2.5.1

[jira] [Assigned] (METRON-1275) Fix Metron Documentation

[ https://issues.apache.org/jira/browse/METRON-1275?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1275: -- Assignee: Jon Zeolla > Fix Metron Documentation > > >

[jira] [Created] (METRON-1275) Fix Metron Documentation

Jon Zeolla created METRON-1275: -- Summary: Fix Metron Documentation Key: METRON-1275 URL: https://issues.apache.org/jira/browse/METRON-1275 Project: Metron Issue Type: Bug Reporter:

[jira] [Assigned] (METRON-1273) Website documentation link should point to the current site-book

[ https://issues.apache.org/jira/browse/METRON-1273?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1273: -- Assignee: Jon Zeolla > Website documentation link should point to the current site-book >

[jira] [Created] (METRON-1273) Website documentation link should point to the current site-book

Jon Zeolla created METRON-1273: -- Summary: Website documentation link should point to the current site-book Key: METRON-1273 URL: https://issues.apache.org/jira/browse/METRON-1273 Project: Metron

[jira] [Created] (METRON-1329) Coalesce metron-bro-plugin-kafka exports

Jon Zeolla created METRON-1329: -- Summary: Coalesce metron-bro-plugin-kafka exports Key: METRON-1329 URL: https://issues.apache.org/jira/browse/METRON-1329 Project: Metron Issue Type:

[jira] [Assigned] (METRON-1329) Coalesce metron-bro-plugin-kafka exports

[ https://issues.apache.org/jira/browse/METRON-1329?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1329: -- Assignee: Jon Zeolla > Coalesce metron-bro-plugin-kafka exports >

[jira] [Updated] (METRON-1329) Simplify metron-bro-plugin-kafka package loading

[ https://issues.apache.org/jira/browse/METRON-1329?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1329: --- Summary: Simplify metron-bro-plugin-kafka package loading (was: Coalesce metron-bro-plugin-kafka

[jira] [Updated] (METRON-1088) Upgrade bro to 2.5.2

[ https://issues.apache.org/jira/browse/METRON-1088?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1088: --- Summary: Upgrade bro to 2.5.2 (was: Upgrade bro to the latest release) > Upgrade bro to 2.5.2 >

[jira] [Updated] (METRON-813) Migrate metron-bro-plugin-kafka to be a bro package

[ https://issues.apache.org/jira/browse/METRON-813?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-813: -- Summary: Migrate metron-bro-plugin-kafka to be a bro package (was: Migrate bro-plugin-kafka to be a

[jira] [Updated] (METRON-1246) elasticsearch fails to run as a non-default user w/systemd

[ https://issues.apache.org/jira/browse/METRON-1246?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1246: --- Issue Type: Sub-task (was: Improvement) Parent: METRON-153 > elasticsearch fails to run as

[jira] [Updated] (METRON-1246) elasticsearch fails to run as a non-default user w/systemd

[ https://issues.apache.org/jira/browse/METRON-1246?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1246: --- Issue Type: Improvement (was: Sub-task) Parent: (was: METRON-559) > elasticsearch fails

[jira] [Updated] (METRON-1246) elasticsearch fails to run as a non-default user w/systemd

[ https://issues.apache.org/jira/browse/METRON-1246?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1246: --- Issue Type: Sub-task (was: Improvement) Parent: METRON-559 > elasticsearch fails to run as

[jira] [Updated] (METRON-1313) Update metron-deployment to use bro-pkg to install the kafka plugin

[ https://issues.apache.org/jira/browse/METRON-1313?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1313: --- Description: Update metron-deployment to use bro-pkg to install apache/metron-bro-plugin-kafka.

[jira] [Created] (METRON-1313) Update metron-deployment to use bro-pkg to install the kafka plugin

Jon Zeolla created METRON-1313: -- Summary: Update metron-deployment to use bro-pkg to install the kafka plugin Key: METRON-1313 URL: https://issues.apache.org/jira/browse/METRON-1313 Project: Metron

[jira] [Updated] (METRON-559) Upgrade full-dev to CentOS 7

[ https://issues.apache.org/jira/browse/METRON-559?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-559: -- Summary: Upgrade full-dev to CentOS 7 (was: Update vagrant OS) > Upgrade full-dev to CentOS 7 >

[jira] [Commented] (METRON-1036) Stellar log function

[ https://issues.apache.org/jira/browse/METRON-1036?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16251405#comment-16251405 ] Jon Zeolla commented on METRON-1036: Aren't these already implemented?

[jira] [Assigned] (METRON-1313) Update metron-deployment to use bro-pkg to install the kafka plugin

[ https://issues.apache.org/jira/browse/METRON-1313?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1313: -- Assignee: Jon Zeolla > Update metron-deployment to use bro-pkg to install the kafka plugin >

[jira] [Created] (METRON-1322) Add a more detailed bro testing use-case

Jon Zeolla created METRON-1322: -- Summary: Add a more detailed bro testing use-case Key: METRON-1322 URL: https://issues.apache.org/jira/browse/METRON-1322 Project: Metron Issue Type: Bug

[jira] [Created] (METRON-1324) Increment metron-bro-plugin-kafka version

Jon Zeolla created METRON-1324: -- Summary: Increment metron-bro-plugin-kafka version Key: METRON-1324 URL: https://issues.apache.org/jira/browse/METRON-1324 Project: Metron Issue Type:

[jira] [Assigned] (METRON-1324) Increment metron-bro-plugin-kafka version

[ https://issues.apache.org/jira/browse/METRON-1324?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1324: -- Assignee: Jon Zeolla > Increment metron-bro-plugin-kafka version >

[jira] [Assigned] (METRON-1324) Increment metron-bro-plugin-kafka version

[ https://issues.apache.org/jira/browse/METRON-1324?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1324: -- Assignee: (was: Jon Zeolla) > Increment metron-bro-plugin-kafka version >

[jira] [Assigned] (METRON-908) Improve ES indexing for bro logs

[ https://issues.apache.org/jira/browse/METRON-908?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-908: - Assignee: (was: Jon Zeolla) > Improve ES indexing for bro logs >

[jira] [Commented] (METRON-813) Migrate bro-plugin-kafka to be a bro package

[ https://issues.apache.org/jira/browse/METRON-813?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16241993#comment-16241993 ] Jon Zeolla commented on METRON-813: --- Note to self: Consider adding a memleak test. See

[jira] [Assigned] (METRON-1303) Reorganize the metron-bro-plugin-kafka

[ https://issues.apache.org/jira/browse/METRON-1303?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1303: -- Assignee: Jon Zeolla > Reorganize the metron-bro-plugin-kafka >

[jira] [Created] (METRON-1304) Allow metron-bro-plugin-kafka to include or exclude logs

Jon Zeolla created METRON-1304: -- Summary: Allow metron-bro-plugin-kafka to include or exclude logs Key: METRON-1304 URL: https://issues.apache.org/jira/browse/METRON-1304 Project: Metron Issue

[jira] [Created] (METRON-1303) Reorganize the metron-bro-plugin-kafka

Jon Zeolla created METRON-1303: -- Summary: Reorganize the metron-bro-plugin-kafka Key: METRON-1303 URL: https://issues.apache.org/jira/browse/METRON-1303 Project: Metron Issue Type: Sub-task

[jira] [Assigned] (METRON-1305) Add metron-bro-plugin-kafka to travis and expand on btests

[ https://issues.apache.org/jira/browse/METRON-1305?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1305: -- Assignee: Jon Zeolla > Add metron-bro-plugin-kafka to travis and expand on btests >

[jira] [Created] (METRON-1308) Fix Metron Documentation

Jon Zeolla created METRON-1308: -- Summary: Fix Metron Documentation Key: METRON-1308 URL: https://issues.apache.org/jira/browse/METRON-1308 Project: Metron Issue Type: Bug Reporter:

[jira] [Created] (METRON-1309) Change metron-deployment to pull the plugin from apache/metron-bro-plugin-kafka

Jon Zeolla created METRON-1309: -- Summary: Change metron-deployment to pull the plugin from apache/metron-bro-plugin-kafka Key: METRON-1309 URL: https://issues.apache.org/jira/browse/METRON-1309 Project:

[jira] [Assigned] (METRON-1308) Fix Metron Documentation

[ https://issues.apache.org/jira/browse/METRON-1308?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1308: -- Assignee: Jon Zeolla > Fix Metron Documentation > > >

[jira] [Commented] (METRON-477) Support lower fidelity retention of network traffic over time

[ https://issues.apache.org/jira/browse/METRON-477?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16283544#comment-16283544 ] Jon Zeolla commented on METRON-477: --- I wouldn't be against that as a start - my biggest concern is to

[jira] [Assigned] (METRON-1406) Add the ability to send all active bro logs to kafka

[ https://issues.apache.org/jira/browse/METRON-1406?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1406: -- Assignee: Jon Zeolla > Add the ability to send all active bro logs to kafka >

[jira] [Created] (METRON-1406) Add the ability to send all active bro logs to kafka

Jon Zeolla created METRON-1406: -- Summary: Add the ability to send all active bro logs to kafka Key: METRON-1406 URL: https://issues.apache.org/jira/browse/METRON-1406 Project: Metron Issue

[jira] [Assigned] (METRON-1407) Metron-Bro-Kafka plugin unable to find correct libkafka library.

[ https://issues.apache.org/jira/browse/METRON-1407?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1407: -- Assignee: Ian Abreu > Metron-Bro-Kafka plugin unable to find correct libkafka library. >

[jira] [Assigned] (METRON-1406) Add the ability to send all active bro logs to kafka

[ https://issues.apache.org/jira/browse/METRON-1406?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla reassigned METRON-1406: -- Assignee: (was: Jon Zeolla) > Add the ability to send all active bro logs to kafka >

[jira] [Commented] (METRON-1406) Add the ability to send all active bro logs to kafka

[ https://issues.apache.org/jira/browse/METRON-1406?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16354543#comment-16354543 ] Jon Zeolla commented on METRON-1406: Note for the future - this should exclude `reporter.log`, as

[jira] [Created] (METRON-1454) Update documentations for new indexing topologies

Jon Zeolla created METRON-1454: -- Summary: Update documentations for new indexing topologies Key: METRON-1454 URL: https://issues.apache.org/jira/browse/METRON-1454 Project: Metron Issue Type:

[jira] [Commented] (METRON-1454) Update documentations for new indexing topologies

[ https://issues.apache.org/jira/browse/METRON-1454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16362146#comment-16362146 ] Jon Zeolla commented on METRON-1454: Duplicate of METRON-1450 > Update documentations for new

[jira] [Updated] (METRON-1454) Update documentations for new indexing topologies

[ https://issues.apache.org/jira/browse/METRON-1454?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1454: --- Description: [The

[jira] [Created] (METRON-1744) CEF testPaloAltoCEF test using a confusing variable name

Jon Zeolla created METRON-1744: -- Summary: CEF testPaloAltoCEF test using a confusing variable name Key: METRON-1744 URL: https://issues.apache.org/jira/browse/METRON-1744 Project: Metron Issue

[jira] [Created] (METRON-1746) CEF lacks an ES template

Jon Zeolla created METRON-1746: -- Summary: CEF lacks an ES template Key: METRON-1746 URL: https://issues.apache.org/jira/browse/METRON-1746 Project: Metron Issue Type: Sub-task

[jira] [Updated] (METRON-1742) Improve CEF log management throughout

[ https://issues.apache.org/jira/browse/METRON-1742?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1742: --- Priority: Minor (was: Major) > Improve CEF log management throughout >

[jira] [Created] (METRON-1743) CEF test confusing URL

Jon Zeolla created METRON-1743: -- Summary: CEF test confusing URL Key: METRON-1743 URL: https://issues.apache.org/jira/browse/METRON-1743 Project: Metron Issue Type: Sub-task

[jira] [Created] (METRON-1742) Improve CEF log management throughout

Jon Zeolla created METRON-1742: -- Summary: Improve CEF log management throughout Key: METRON-1742 URL: https://issues.apache.org/jira/browse/METRON-1742 Project: Metron Issue Type: Improvement

[jira] [Updated] (METRON-1745) CEF runTest test isn't properly leveraging an explicit json sample

[ https://issues.apache.org/jira/browse/METRON-1745?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jon Zeolla updated METRON-1745: --- Description:

  1   2   3   >