From: Jeff Lucovsky Date: Sat, 28 Sep 2019 13:02:18 +0000 (-0400) Subject: doc/eve.alert: Expand metadata description X-Git-Tag: suricata-5.0.0~43 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=17c3e22ecd4dae396f0de9603f01369504403b60;p=thirdparty%2Fsuricata.git doc/eve.alert: Expand metadata description --- diff --git a/doc/userguide/output/eve/eve-json-output.rst b/doc/userguide/output/eve/eve-json-output.rst index b989b1d2d6..df1fc83db8 100644 --- a/doc/userguide/output/eve/eve-json-output.rst +++ b/doc/userguide/output/eve/eve-json-output.rst @@ -60,8 +60,8 @@ Metadata:: #payload-buffer-size: 4kb # max size of payload buffer to output in eve-log #payload-printable: yes # enable dumping payload in printable (lossy) format #packet: yes # enable dumping of packet (without stream segments) - #http-body: yes # enable dumping of http body in Base64 - #http-body-printable: yes # enable dumping of http body in printable format + #http-body: yes # Requires metadata; enable dumping of http body in Base64 + #http-body-printable: yes # Requires metadata; enable dumping of http body in printable format # metadata: diff --git a/doc/userguide/partials/eve-log.yaml b/doc/userguide/partials/eve-log.yaml index f0eba73d61..f4b3c7e15a 100644 --- a/doc/userguide/partials/eve-log.yaml +++ b/doc/userguide/partials/eve-log.yaml @@ -35,8 +35,8 @@ outputs: # payload-buffer-size: 4kb # max size of payload buffer to output in eve-log # payload-printable: yes # enable dumping payload in printable (lossy) format # packet: yes # enable dumping of packet (without stream segments) - # http-body: yes # enable dumping of http body in Base64 - # http-body-printable: yes # enable dumping of http body in printable format + # http-body: yes # Requires metadata; enable dumping of http body in Base64 + # http-body-printable: yes # Requires metadata; enable dumping of http body in printable format # Enable the logging of tagged packets for rules using the # "tag" keyword.