Wireshark-bugs: [Wireshark-bugs] [Bug 1373] Info field remains truncated monitoring UDP 514 IDS/
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1373
alpha096@xxxxxxxxxx changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|Major |Enhancement
Status|RESOLVED |REOPENED
Priority|Medium |High
Resolution|WONTFIX |
------- Comment #3 from alpha096@xxxxxxxxxx 2007-02-15 05:58 GMT -------
I totally understand the normal small amount of information in the info area -
However please consider that currently there is no SYSLOG viewer available that
runs in real time under Linux.
Every Network Manager would love to give up the MS Windows Based Syslog Daemon
they have to maintain to view their Cisco router logs in real time, Every
IDS/IDP manufacturer which does not come with a Management Module will send out
Syslog format information to UDP 514.
Their is currently NO Linux solution to real time reading of security log data
(which is always sent to UDP/514 and the term 'Syslog' in a Windows Environment
refers only to the real time view of Security Data which is UDP/514 and that
Port is classified as Syslog.
Please reconsider the massive use that so many Linux user would have before
squashing this request. I will as such turn it into an enhancement however you
can certainly not consider it.
I do appreciate it is a relatively huge change, however you will have the
thanks of thousands of Security Analysis's
--
Configure bugmail: http://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.