Argus to splunk

CS Lee geek00l at gmail.com
Tue Apr 17 19:31:44 EDT 2012


hi David,

If you are not going to extract data from suser and duser field, basically
it is quite straightforward to get argus data into splunk, most of people
only have problem with user data because it may contains anything like ,|
and so forth.

Cheers!

-- 
Best Regards,

CS Lee<geek00L[at]gmail.com>

http://geek00l.blogspot.com
http://defcraft.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20120418/6a173c67/attachment.html>


More information about the argus mailing list