[Oisf-users] Precedence of EVE logging levels
David
lists at edeca.net
Mon May 18 16:51:54 UTC 2015
On 16/05/2015 00:02, James Moe wrote:
> What is the order of verbosity for EVE output? The online docs for
> <suricata.yaml> make no mention of this.
> The list from the YAML file:
> Emergency, Alert, Critical, Error, Warning, Notice, Info, Debug
>
> It seems ambiguous because normally, in English, "Critical," "Error"
> and "Warning" imply greater urgency than "Alert."
> Is the EVE list above, least to most verbose, correct?
These are relevant for syslog output and set the severity which is
passed to the logger.
http://en.wikipedia.org/wiki/Syslog
David
More information about the Oisf-users
mailing list