doc/eve.alert: Expand metadata description

author Jeff Lucovsky <jeff@lucovsky.org>

Sat, 28 Sep 2019 13:02:18 +0000 (09:02 -0400)

committer Victor Julien <victor@inliniac.net>

Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)
author Jeff Lucovsky <jeff@lucovsky.org>
Sat, 28 Sep 2019 13:02:18 +0000 (09:02 -0400)
committer Victor Julien <victor@inliniac.net>
Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)
diff --git a/doc/userguide/output/eve/eve-json-output.rst b/doc/userguide/output/eve/eve-json-output.rst

index b989b1d2d6a4acd1fad02e835892f51e3dc84497..df1fc83db868010482681b61c35d57d2377829be 100644 (file)
--- a/doc/userguide/output/eve/eve-json-output.rst
+++ b/doc/userguide/output/eve/eve-json-output.rst
@@ -60,8 +60,8 @@ Metadata::
              #payload-buffer-size: 4kb # max size of payload buffer to output in eve-log
              #payload-printable: yes   # enable dumping payload in printable (lossy) format
              #packet: yes              # enable dumping of packet (without stream segments)
-            #http-body: yes           # enable dumping of http body in Base64
-            #http-body-printable: yes # enable dumping of http body in printable format
+            #http-body: yes           # Requires metadata; enable dumping of http body in Base64
+            #http-body-printable: yes # Requires metadata; enable dumping of http body in printable format
  
              # metadata:
  
diff --git a/doc/userguide/partials/eve-log.yaml b/doc/userguide/partials/eve-log.yaml

index f0eba73d61c41b88177eb12bd0283534b801713d..f4b3c7e15aa5a1003cc2d99c01f59a9b76d79088 100644 (file)
--- a/doc/userguide/partials/eve-log.yaml
+++ b/doc/userguide/partials/eve-log.yaml
@@ -35,8 +35,8 @@ outputs:
              # payload-buffer-size: 4kb # max size of payload buffer to output in eve-log
              # payload-printable: yes   # enable dumping payload in printable (lossy) format
              # packet: yes              # enable dumping of packet (without stream segments)
-            # http-body: yes           # enable dumping of http body in Base64
-            # http-body-printable: yes # enable dumping of http body in printable format
+            # http-body: yes           # Requires metadata; enable dumping of http body in Base64
+            # http-body-printable: yes # Requires metadata; enable dumping of http body in printable format
  
              # Enable the logging of tagged packets for rules using the
              # "tag" keyword.
author	Jeff Lucovsky <jeff@lucovsky.org>
	Sat, 28 Sep 2019 13:02:18 +0000 (09:02 -0400)
committer	Victor Julien <victor@inliniac.net>
	Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)
doc/userguide/output/eve/eve-json-output.rst		patch \| blob \| blame \| history
doc/userguide/partials/eve-log.yaml		patch \| blob \| blame \| history