Marco Ochse
Marco Ochse
I like the idea since it allows for cleaner logging, but I am not sure if this will break things for DionaeaFR, EWSPoster or hpfeeds. @phibos What do you think?...
Python 3.9 works fine for now.
I went through some log files today in prep for T-Pot 16.10 and found that ftp is written as an array as well instead of being flattened: ``` "ftp": {...
@phibos Could you have look at this issue please :bowtie:
@phibos Thank you for your quick reply and taking this on. I'm a little bit confused... your flattened example actually shows a flattened output, however the actual result I get...
I see, the brackets ``[``and ``]`` are the reason why ELK interprets it as an array.
ELK 5.3 will not index the credentials array at all. Can you hava a look at this please? ``` 14:29:40.137 [[main]>worker1] WARN logstash.outputs.elasticsearch - Failed action. {:status=>400, :action=>["index", {:_id=>nil, :_index=>"logstash-2017.04.10",...
@phibos Thanks for testing, retested with a very basic logstash config and ES unfortunately does not index the message with the array in place. Just out of curiosity, did the...
Thanks for the swift feedback! Let me know if I can support with logs.
I think JSON is the way to go and as dionaea (with thanks to @phibos) moves forward so should the tools building up on dionaea. @Mato-Z You should check out...