Project

General

Profile

Actions
Copy link

Task #6851

open

eve/syslog: stats message too long for many default configurations

Added by Jason Ish about 2 months ago.

Status:
New
Priority:
Normal
Assignee:
OISF Dev
Target version:
TBD
Effort:
Difficulty:
Label:

Description

With current git master and a defautl configuration file and reading an empty pcap I'm generating a stats entry of 8659 bytes. Ubuntu, Fedora and RHEL all use rsyslog and have a default maximum of 8096 byte, however this can be configured with by modifying the rsyslog configuration.

Probably nothing more than a documentation issue.

Related issues 1 (1 open0 closed)

Related to Suricata - Task #6849: brainstorm: should certain ouput types be removed (eg syslog)NewOISF DevActions
Actions
Copy link
 #2

Updated by Jason Ish about 2 months ago

  • Related to Task #6849: brainstorm: should certain ouput types be removed (eg syslog) added
Actions
Copy link

Also available in: Atom PDF