zeek/testing/btest/Baseline/scripts.base.frameworks.logging.empty-event/ssh.log

#separator \x09
#set_separator	,
#empty_field	(empty)
#unset_field	-
#path	ssh
#open	2020-07-06-18-40-35
#fields	t	id.orig_h	id.orig_p	id.resp_h	id.resp_p	status	country
#types	time	addr	port	addr	port	string	string
1594060835.005954	1.2.3.4	1234	2.3.4.5	80	success	unknown
1594060835.005954	1.2.3.4	1234	2.3.4.5	80	failure	US
1594060835.005954	1.2.3.4	1234	2.3.4.5	80	failure	UK
1594060835.005954	1.2.3.4	1234	2.3.4.5	80	success	BR
1594060835.005954	1.2.3.4	1234	2.3.4.5	80	failure	MX
#close	2020-07-06-18-40-35