diff options
| author | unknown <[email protected]> | 2023-06-27 17:31:56 +0800 |
|---|---|---|
| committer | unknown <[email protected]> | 2023-06-27 17:31:56 +0800 |
| commit | 24d70f690e2d1462aeb4386c0be079542262aee8 (patch) | |
| tree | 3b13934308ae5c348cb8ec68dc029f6bbaff07fe | |
| parent | 77e982b22f77482ddca450b14ac438333b1b28ce (diff) | |
TSG-15712 修正DoS基线阈值告警信息中告警严重程度与告警值不匹配问题tsg-23.06
| -rw-r--r-- | src/main/java/com/zdjizhi/etl/DosDetection.java | 3 | ||||
| -rw-r--r-- | src/main/java/com/zdjizhi/etl/ParseBaselineThreshold.java | 2 |
2 files changed, 4 insertions, 1 deletions
diff --git a/src/main/java/com/zdjizhi/etl/DosDetection.java b/src/main/java/com/zdjizhi/etl/DosDetection.java index 2e728f8..74c4bdf 100644 --- a/src/main/java/com/zdjizhi/etl/DosDetection.java +++ b/src/main/java/com/zdjizhi/etl/DosDetection.java @@ -181,7 +181,8 @@ public class DosDetection extends BroadcastProcessFunction<DosSketchLog,Map<Stri }else if ((type == BASELINE_CONDITION_TYPE || type == SENSITIVITY_CONDITION_TYPE) && value.getSketch_sessions() < staticSensitivityThreshold){ logger.debug("当前server IP:{},类型:{},基线值{}百分比{}未超过静态敏感阈值,日志详情\n{}",destinationIp, attackType, base, percent, value); }else { - result = getResult(value, base, profileId, severity, percent+1, type, tag); +// result = getResult(value, base, profileId, severity, percent+1, type, tag); + result = getResult(value, base, profileId, severity, percent, type, tag); if (type == SENSITIVITY_CONDITION_TYPE){ result.setSeverity(Severity.MAJOR.severity); } diff --git a/src/main/java/com/zdjizhi/etl/ParseBaselineThreshold.java b/src/main/java/com/zdjizhi/etl/ParseBaselineThreshold.java index fd94ee5..dc37bdf 100644 --- a/src/main/java/com/zdjizhi/etl/ParseBaselineThreshold.java +++ b/src/main/java/com/zdjizhi/etl/ParseBaselineThreshold.java @@ -38,6 +38,8 @@ public class ParseBaselineThreshold { config.set("hbase.client.retries.number", "3"); config.set("hbase.bulkload.retries.number", "3"); config.set("zookeeper.recovery.retry", "3"); + config.set("hbase.defaults.for.version", "2.2.3"); + config.set("hbase.defaults.for.version.skip", "true"); config.setInt(HConstants.HBASE_CLIENT_OPERATION_TIMEOUT, CommonConfig.HBASE_CLIENT_OPERATION_TIMEOUT); config.setInt(HConstants.HBASE_CLIENT_SCANNER_TIMEOUT_PERIOD, CommonConfig.HBASE_CLIENT_SCANNER_TIMEOUT_PERIOD); |