[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bro
Subject:    Re: [Bro] Adding SSL certs to Bro 2.0
From:       Will <baxterw3232 () gmail ! com>
Date:       2012-03-15 19:24:08
Message-ID: CANAhm=i_X-8x=YD+yb67KtrFjrT2iXnDoJVTjFh6sw8Wqz+RJQ () mail ! gmail ! com
[Download RAW message or body]

On Thu, Mar 15, 2012 at 10:26 AM, Robin Sommer <robin@icir.org> wrote:
>
> On Wed, Mar 14, 2012 at 10:12 -0500, you wrote:
>
>> Quick question. I am getting a timeout when trying to print the
>> variable containing the root_certs. I am just wondering if this is due
>> to having too many trusted certs loaded or if this is just a
>> limitation of the broctl print function.
>
> Pretty certainly the latter, the table itself shouldn't have a problem
> with many entries. Bro's current git version has a new option to
> increase the BroControl timeout for print, but here's another thing
> you can do to see the output:
>

Excellent! Thanks Robin!

> Add this to your local.bro:
>
> =A0 =A0event bro_init()
> =A0 =A0{
> =A0 =A0 =A0 =A0print SSL::root_certs;
> =A0 =A0}
>
> Get a small trace and run it through broctl's "process" command:
>
> =A0 =A0broctl process path/to/trace
>
> This will print all the certs to stdout (and then process the trace).
>
> (Trace content doesn't matter; one of Bro's test traces will do, like
> bro/testing/btest/Traces/web.trace).
>
Much appreciated!

> Robin
>
> --
> Robin Sommer * Phone +1 (510) 722-6541 * robin@icir.org
> ICSI/LBNL =A0 =A0* Fax =A0 +1 (510) 666-2956 * =A0 www.icir.org

_______________________________________________
Bro mailing list
bro@bro-ids.org
http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
[prev in list] [next in list] [prev in thread] [next in thread]