[Oisf-users] Log entry timestamp question
James Moe
jimoe at sohnen-moe.com
Fri Dec 29 06:26:52 UTC 2017
On 12/28/2017 06:47 PM, Steve Castellarin wrote:
>
> OK - interesting. If that's the case then why is current documentation
> (http://suricata.readthedocs.io/en/latest/output/eve/eve-json-format.html)
> showing an example JSON record with microseconds already in it?
>
I believe the JSON logs always showed time in an ISO format. My issue
was with the other logs that did not.
The format "yyyy-mm-ddThh:mm:ss.000001-0500" does show the ISO time
with microseconds. It also has the time zone tacked onto the end.
--
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
Think.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20171228/bd73c6df/attachment-0002.sig>
More information about the Oisf-users
mailing list