Year not present in output log files
Bug #1435993 reported by
Thomas d'Otreppe
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| snort (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Bug Description
The alert_csv output file as well as alert_fast don't contain the year in the log files (other might as well).
We should be able to figure out the year but there are certain scenarios where logging system will fail getting the correct time (due to guessing or defaulting to current year when parsing the timestamp) for the event. Eg: processing alert file in January containing alerts for December last year.
So, in my opinion, the year should be present in the log files.
The good thing about it, we just have to update a parameter in the default file for snort (/etc/default/
To post a comment you must log in.
