[Bro] Bro not producing a notice.log
Paweł Piszczatowski
pawelec93 at googlemail.com
Thu Apr 7 15:46:53 PDT 2016
I have a Bro cluster setup in the AWS cloud, currently just with one node.
My problem is that Bro is not producing the notice.log, it should just log
successful SSH logins but it doesn't. I have tried SSH and FTP bruteforcing
the worker node and exceeding the limit of failed connections, again no
notice.log. I can see the detect-bruteforcing.bro scripts loaded in the
loaded_scripts.log. I am pretty new to Bro, so I am not sure what I am
doing wrong.
Regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20160407/e70ff85e/attachment.html
More information about the Bro
mailing list