[Snort-users] Fast Alert Log Format

Bill McCarty bmccarty at ...5196...
Mon Mar 4 18:34:13 EST 2002

Hi Marty,

Thanks! The generator ID was an unexpected bit of data.

I infer that the [**] gizmos are merely fixed points that help a parser 
along. I'd supposed that sometimes the asterisks were replaced by something 
really clever and worth knowing about. Oh well!

Ah, [E]nlightenment: no more in RHL 7.2. Not missed by me, despite the cool 


More information about the Snort-users mailing list