|
When I submit false positives to Sniffer about
half come back rule clean. I then have to go to the logs and pull out those
messages and resubmit the false positives with the log lines.
I believe I am FTPing up my log files to Sniffer
nightly.
Isn't there a way to automatically pull these log
lines out of the logs I have already sent up to Sniffer?
|
- [sniffer] False Postive Processing more automation? Scott Fisher
