Project

General

Profile

Actions
Copy link

Task #6849

open
JF OD

brainstorm: should certain eve ouput types be removed (eg syslog)

Task #6849: brainstorm: should certain eve ouput types be removed (eg syslog)

Added by Juliana Fajardini Reichow about 2 years ago. Updated about 1 year ago.

Status:
New
Priority:
Normal
Assignee:
OISF Dev
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

Some eve filetypes do not allow large enough records for even common use like stats records (8k).
Should we move to something like file instead of using the standard syslog output;
maybe allow EVE filetype to be configurable in terms of what verbosity or other aspects.

Related issues 2 (1 open1 closed)

Related to Suricata - Task #6851: eve/syslog: stats message too long for many default configurationsNewOISF DevActions
Related to Suricata - Task #7589: eve: deprecate syslog filetype for eveRejectedOISF DevActions

JF Updated by Juliana Fajardini Reichow about 2 years ago Actions
Copy link
 #1

  • Description updated (diff)

JI Updated by Jason Ish about 2 years ago Actions
Copy link
 #2

  • Related to Task #6851: eve/syslog: stats message too long for many default configurations added

JI Updated by Jason Ish over 1 year ago Actions
Copy link
 #3

  • Subject changed from brainstorm: should certain ouput types be removed (eg syslog) to brainstorm: should certain eve ouput types be removed (eg syslog)

JI Updated by Jason Ish about 1 year ago Actions
Copy link
 #4

  • Related to Task #7589: eve: deprecate syslog filetype for eve added

VJ Updated by Victor Julien about 1 year ago Actions
Copy link
 #5

  • Target version changed from 8.0.0-beta1 to 9.0.0-beta1
Actions
Copy link

Also available in: PDF Atom