mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
3220bbce55
* origin/topic/jsiwek/log-escaping: Add missing ascii writer options to log header. Escape the ASCII log's set separator (addresses #712) Rewrite ODesc character escaping functionality. (addresses #681) Closes #712.
12 lines
463 B
Text
12 lines
463 B
Text
#separator \x09
|
|
#set_separator \x2c
|
|
#empty_field \x2d
|
|
#unset_field \x2d
|
|
#path ssh
|
|
#fields t id.orig_h id.orig_p id.resp_h id.resp_p status country
|
|
#types time addr port addr port string string
|
|
1323275824.696040 1.2.3.4 1234 2.3.4.5 80 success unknown
|
|
1323275824.696040 1.2.3.4 1234 2.3.4.5 80 failure US
|
|
1323275824.696040 1.2.3.4 1234 2.3.4.5 80 failure UK
|
|
1323275824.696040 1.2.3.4 1234 2.3.4.5 80 success BR
|
|
1323275824.696040 1.2.3.4 1234 2.3.4.5 80 failure MX
|