Hi, I was working through the excellent ELK guide and ran into this issue where logstash expects ossec alert logs to be in JSON format (/var/ossec/logs/alerts/alerts.json vs /var/ossec/logs/alerts/alerts.log)
But I'm on 2.8.3 and according to the docs that is only available in 2.9 (beta) ? http://ossec-docs.readthedocs.org/en/latest/manual/output/json-alert-log-output.html What is the recommended method to upgrade to 2.9 and enable JSON output? Or is there another way? thanks! -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
