logging/alert: Expand alert logging description

author Jeff Lucovsky <jeff@lucovsky.org>

Sat, 28 Sep 2019 12:57:29 +0000 (08:57 -0400)

committer Victor Julien <victor@inliniac.net>

Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)
author Jeff Lucovsky <jeff@lucovsky.org>
Sat, 28 Sep 2019 12:57:29 +0000 (08:57 -0400)
committer Victor Julien <victor@inliniac.net>
Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)
diff --git a/suricata.yaml.in b/suricata.yaml.in

index 20e512b1be99f072d3ec9787ed0172e21918e0ac..c9852c010e6b9d71f9cf58989903c2c8f6456635 100644 (file)
--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@@ -148,9 +148,9 @@ outputs:
              # payload-buffer-size: 4kb # max size of payload buffer to output in eve-log
              # payload-printable: yes   # enable dumping payload in printable (lossy) format
              # packet: yes              # enable dumping of packet (without stream segments)
-            # http-body: yes           # enable dumping of http body in Base64
-            # http-body-printable: yes # enable dumping of http body in printable format
              # metadata: no             # enable inclusion of app layer metadata with alert. Default yes
+            # http-body: yes           # Requires metadata; enable dumping of http body in Base64
+            # http-body-printable: yes # Requires metadata; enable dumping of http body in printable format
  
              # Enable the logging of tagged packets for rules using the
              # "tag" keyword.
author	Jeff Lucovsky <jeff@lucovsky.org>
	Sat, 28 Sep 2019 12:57:29 +0000 (08:57 -0400)
committer	Victor Julien <victor@inliniac.net>
	Wed, 9 Oct 2019 14:12:03 +0000 (16:12 +0200)