base/protocols/postgresql/main.zeek
- PostgreSQL
Implements base functionality for PostgreSQL analysis.
- Namespace:
PostgreSQL
- Imports:
base/protocols/conn/removal-hooks.zeek, base/protocols/postgresql/consts.zeek, base/protocols/postgresql/spicy-events.zeek
Summary
State Variables
Types
Record type containing the column fields of the PostgreSQL log. |
|
Redefinitions
Log stream identifier. |
|
|
|
Events
Default hook into PostgreSQL logging. |
Hooks
Detailed Interface
State Variables
Types
- PostgreSQL::Info
- Type:
-
- ts:
time
&log
Timestamp for when the activity happened.
- uid:
string
&log
Unique ID for the connection.
- id:
conn_id
&log
The connection’s 4-tuple of endpoint addresses/ports.
- user:
string
&optional
&log
The user as found in the StartupMessage.
- database:
string
&optional
&log
The database as found in the StartupMessage.
- application_name:
string
&optional
&log
The application name as found in the StartupMessage.
frontend:
string
&optional
&log
frontend_arg:
string
&optional
&log
backend:
string
&optional
&log
- ts:
Record type containing the column fields of the PostgreSQL log.
Events
- PostgreSQL::log_postgresql
- Type:
event
(rec:PostgreSQL::Info
)
Default hook into PostgreSQL logging.