[Bro] Weird Log rotation in Bro IDS 2.5 Beta
lagoon7 at gmail.com
Thu Nov 3 08:59:38 PDT 2016
OK please let me know if you need further information and if this qualifies
as a bug.
Here is my redef I am using to write log files in JSON.
redef LogAscii::use_json = T;
>From your line if I want to write the timestamp other than EPOCH then I
should use the line you mentioned in addition to the redef I have.
On Thu, Nov 3, 2016 at 10:55 AM, Seth Hall <seth at icir.org> wrote:
> > On Nov 3, 2016, at 9:35 AM, Ludwig Goon <lagoon7 at gmail.com> wrote:
> > Yes I am writing logs as JSON. But I don't have the ISO part on the end.
> What is the correct way that line should read and is that the fix?
> Nope, that line I provided is not a fix. We fixed an issue related to
> timestamp rendering in the 2.5 release. Whatever problem you are
> encountering is unknown. Is anyone else on the list seeing issues like
> Seth Hall
> International Computer Science Institute
> (Bro) because everyone has a network
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro