El mié, 16-01-2008 a las 07:59 -0400, Daniel Cid escribió:
Hi Paco,
If you can forward some log samples to us, we can help you out with the rules.
Thanks,
ISO8601 has this format -MM-dd HH:mm:ss,SSS
--
GIT CONSULTORS
www.git.es
Tel: +34 971 498 310
Fax: +34 971 496 189
C/
El mié, 16-01-2008 a las 07:59 -0400, Daniel Cid escribió:
Hi Paco,
If you can forward some log samples to us, we can help you out with the rules.
Thanks,
Attached there is a sample log output. JBoss use Log4j for loggin, and
by default the log format is defined by this pattern:
%d %-5p
Hi
There is support for JBoss logs?
No default rules exist to analyse JBoss logs,but we can do it by ourselves.
I think the file Log Analysis using OSSEC by Daniel B. Cid at
http://www.ossec.net/ossec-docs/auscert-2007-dcid.pdf
will help a lot in understanding the mechanism and processing
Hi Paco,
If you can forward some log samples to us, we can help you out with the rules.
Thanks,
--
Daniel B. Cid
dcid ( at ) ossec.net
On Jan 15, 2008 8:38 PM, xu Feng [EMAIL PROTECTED] wrote:
Hi
There is support for JBoss logs?
No default rules exist to analyse JBoss logs,but we can