This allows system admins to see what is being collected on their endpoints. It can be enabled by creating a directory named uploads in the same directory as the local_buffer file.
If this directory exists then events that are uploaded to the server server will also be appended to a daily json file within it. There is no auto removal of old files so admins will have to manage that themselves. It can be disabled again by simply removing the uploads directory.
This allows system admins to see what is being collected on their endpoints. It can be enabled by creating a directory named
uploadsin the same directory as thelocal_bufferfile. If this directory exists then events that are uploaded to the server server will also be appended to a daily json file within it. There is no auto removal of old files so admins will have to manage that themselves. It can be disabled again by simply removing theuploadsdirectory.