Feature #397
OSSEC log & prelude-lml rule
Start date:
03/02/2011
Due date:
% Done:
0%
Resolution:
Description
Hello!
I have logs OSSEC in this format:
something
timestamp
something
log recordsomething
timestamp
something
log record...etc.
Tell me please, how I can attach timestamp to the log entries? Give an example please.
Thank you!
History
#1 Updated by Vladimir Lapshin about 13 years ago
Log format:
something
timestamp
something
log record
#2 Updated by Thomas ANDREJAK almost 8 years ago
- Status changed from New to Closed
- Assignee set to Thomas ANDREJAK
You can use Prelude-LML context or the IDMEF connector in OSSEC.