Project

General

Profile

Actions

Feature #1235

closed

Uniformed use of logging and configuration formats

Added by Andreas Moe over 10 years ago. Updated over 8 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
Effort:
Difficulty:
Label:

Description

At the present time Suricatas configuration is in the YAML format, alerts can be given i various formats and statistics is in a formated plaintext format. There are various tickets regarding the future of suricata that regard some kind of formating of input and or output. Examples of this are Feature #249 and Feature #1228 and other places where Suricata will uses for example csv formats in packet profiling.

My suggestion is to create a policy for what kind of formats should be used. An example of such a policy / guideline could be that all configuration should be given in YAML format or YAML or JSON and output of non-alert events in csv or json. This would give a certanty for the users and developers with regards to how functionality should be explored / implemented and how something should be written in the configuration. My suggestions for formats are just examples by the way.

Actions

Also available in: Atom PDF