Snort mailing list archives
new syslog format
From: "Jones, Benny" <Ben () wcom net>
Date: Tue, 24 Jul 2001 07:54:51 -0400
On the sensors that are running snort 1.8, I'm seeing a field in my syslog alerts that looks like [1:0:0]. I've looked through the docs, but can't find what this means. I'm hoping the answer isn't too awfully obvious, but could someone tell me what this is? TIA. Benny
Current thread:
- new syslog format Jones, Benny (Jul 24)
- Re: new syslog format Martin Roesch (Jul 24)