[Bro] http.log q.
Dk Jack
dnj0496 at gmail.com
Sat Jan 13 09:52:58 PST 2018
Yes, they are being written using the default ascii writer
Bhasker.
> On Jan 13, 2018, at 6:46 AM, Seth Hall <seth at corelight.com> wrote:
>
>
>
>> On 10 Jan 2018, at 17:49, Dk Jack wrote:
>>
>> 1515542375.578187 CGR1kN3pynC8a3GXK1 10.20.11.1 7867 10.20.11.120 9453
>> 79 POST ...
>> 1515542387.701328 CGR1kN3pynC8a3GXK1 10.20.11.1 7867 10.20.11.120 9453
>> 90 POST ...
>> 1515542354.674611 CGR1kN3pynC8a3GXK1 10.20.11.1 7867 10.20.11.120 9453
>> 55 POST ...
>> 1515542382.015911 CGR1kN3pynC8a3GXK1 10.20.11.1 7867 10.20.11.120 9453
>> 85 POST ...
>
> Are these logs being written with the normal "ascii" log writer? If they are, I don't have a sensible explanation yet for why they would be out of order like that and I've never seen that behavior.
>
> .Seth
>
> --
> Seth Hall * Corelight, Inc * www.corelight.com
More information about the Bro
mailing list