More sensible configuration file defaults, some sections left commented to...

More sensible configuration file defaults, some sections left commented to prevent unnecessary default filtering and/or adding Node info

More sensible configuration file defaults, some sections left commented to...
c559e17c · Pavel Kácha · d3bd5ee0 · c559e17c
Commit c559e17c authored 9 years ago by Pavel Kácha
--- a/warden3/contrib/warden_filer/warden_filer.cfg.dist
+++ b/warden3/contrib/warden_filer/warden_filer.cfg.dist
+// For all options see documentation
 {
    // Warden config can be also referenced as:
    // "warden": "/path/to/warden_client.cfg"
    "warden": {
        "url": "https://example.com/warden3",
        "cafile": "tcs-ca-bundle.pem",
-        "timeout": 10,
+        "keyfile": "my.key.pem",
-        "errlog": {"level": "debug"},
+        "certfile": "my.cert.pem",
+        "timeout": 60,
+        "retry": 20,
+        "pause": 5,
        "filelog": {"level": "debug"},
-        "idstore": "myclient.id",
        "name": "com.example.warden.test",
        "secret": "SeCrEt"
    },
@@ -16,41 +19,36 @@
        // for Idea events to send out
        "dir": "warden_sender",
        // Optional filter fields, unmatched events are discarded (and removed)
-        "filter": {
+        //"filter": {
-            "cat": ["Test", "Recon.Scanning"],
+        //    "cat": ["Test", "Recon.Scanning"],
-            "nocat": null,
+        //    "nocat": null,
-            "group": ["cz.example"],
+        //    "group": ["cz.example"],
-            "nogroup": null,
+        //    "nogroup": null,
-            "tag": null,
+        //    "tag": null,
-            "notag": ["Honeypot"]
+        //    "notag": ["Honeypot"]
-        },
+        //},
        // Optional information about detector to be prepended into Idea Node array
-        "node": {
+        //"node": {
-            "Name": "cz.example.warden.test_sender",
+        //    "Name": "cz.example.warden.test_sender",
-            "Type": ["Relay"],
+        //    "Type": ["Relay"]
-            "SW": ["warden_filer-sender"],
+        //}
-            "AggrWin": "00:05:00",
-        }
    },
    "receiver": {
        // Maildir like directory, whose "incoming" will serve as target for events
        "dir": "warden_receiver",
        // Optional filter fields for Warden query
-        "filter": {
+        //"filter": {
-            "cat": ["Test", "Recon.Scanning"],
+        //    "cat": ["Test", "Recon.Scanning"],
-            "nocat": null,
+        //    "nocat": null,
-            "group": ["cz.cesnet"],
+        //    "group": ["cz.cesnet"],
-            "nogroup": null,
+        //    "nogroup": null,
-            "tag": null,
+        //    "tag": null,
-            "notag": ["Honeypot"]
+        //    "notag": ["Honeypot"]
-        },
+        //},
        // Optional information about detector to be prepended into Idea Node array
-        "node": {
+        //"node": {
-            "Name": "cz.example.warden.test_receiver",
+        //    "Name": "cz.example.warden.test_receiver",
-            "Type": ["Relay"],
+        //    "Type": ["Relay"]
-            "SW": ["warden_filer-receiver"],
+        //}
-            "AggrWin": "00:05:00",
-            "Note": "Test warden_filer receiver"
-        }
    }
 }