[Bro] Binpac exception

James Lay jlay at slave-tothe-box.net
Fri Jul 18 15:51:05 PDT 2014

I added the below to remove syslog from getting logged in my local.bro, 
and I do not have a syslog.log as wanted:

event bro_init()

However I am seeing a large amount of the below in weird.log:

1405648595.773644       Comss94xWJf5CHpgnl       54619      514     binpac exception: string mismatch at 
\x0aexpected pattern: "[[:digit:]]+"\x0aactual data: "syslog message 
here"   -       F       bro

My start line:

/usr/local/bin/bro --no-checksums -i eth0 local "Site::local_nets += { }"

Is there a way I can troubleshoot this?  Thank you.


More information about the Bro mailing list