Open leweafan opened 1 year ago
This issue doesn't have a Team:<team>
label.
Hi! We just realized that we haven't looked into this issue in a while. We're sorry!
We're labeling this issue as Stale
to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1
.
Thank you for your contribution!
Describe the enhancement:
Please add patterns for System module (Auth fileset) to parse SSHD messages. Now user.name and ip address not parsed.
Debian:
CentOS:
Describe a specific use case for the enhancement or feature:
This parsing is important for security reasons and SIEM rules.