[Oisf-users] Precedence of EVE logging levels
James Moe
jimoe at sohnen-moe.com
Fri May 15 23:02:24 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
suricata 2.0.7
linux 3.16.7-21-desktop x86_64
What is the order of verbosity for EVE output? The online docs for
<suricata.yaml> make no mention of this.
The list from the YAML file:
Emergency, Alert, Critical, Error, Warning, Notice, Info, Debug
It seems ambiguous because normally, in English, "Critical," "Error"
and "Warning" imply greater urgency than "Alert."
Is the EVE list above, least to most verbose, correct?
- --
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iEYEARECAAYFAlVWewAACgkQzTcr8Prq0ZNxPgCgqrxtM2yFiGUB1qIsSDF9eO3x
FRkAnRXV7O/AeUYIfhaqlIqI7yLXI4Qj
=5bcr
-----END PGP SIGNATURE-----
More information about the Oisf-users
mailing list