Hello, Because I lose so much processing power when manually converting Bro output logs from Epoch to EST using bro-cut, can I have a feature that automatically outputs the Bro logs to EST automatically instead of Epoch while Bro is timestamping the logs as it sees the traffic?
I'm not sure if using the Epoch format makes Bro much faster while it's processing, but I would like a more integrated solution aside from using the bro-cut utility. Thank you for your time,
_______________________________________________ bro-dev mailing list [email protected] http://mailman.icsi.berkeley.edu/mailman/listinfo/bro-dev
