[ossec-list] Simplest question ever (?) - timestamp

Wed, 15 Aug 2012 11:50:15 -0700 

Is there a way to tell OSSEC to use the timestamp of the actual logfile 
entry rather than its own "internal timestamp of when it sees the alert"?

This should be a configuration option - *hint hint* 

Unless there is already a way to do this. 

thanks
K

Reply via email to