[Bro] File extraction in different directories (maybe day vise)

fatema bannatwala fatema.bannatwala at gmail.com
Mon Nov 28 11:14:37 PST 2016


Just wanted to check-in, so that I don't re-invent the wheel, is there any
way, or if somebody has tried extracting the files in different
directories,i.e maybe in daily directory (just like bro logs the events in
the day vise directory)?
Right now we have over thousands of files extracted in a single directory
and it's getting harder to manage the one single directory to access the
extracted files, hence was looking into the Bro logging framework so that I
can steal some code from the event logging and rotation part for the file
extraction script.
Any other way around to it?

Appreciate the help.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20161128/0453d91c/attachment.html 

More information about the Bro mailing list