Hi, I'm a relative newcomer to SEC. I've been exploring it with good results so far.
Yet there's one thing. SEC's timestamps lines it reads with the current time. This is excellent for real-time analysis, but for later analysis that's not so hot. Syslog files are timestamped, and I'd like to use these timestamps instead of "$time = time()". Has anybody done this before, and will Pair/PairWithWindow work if I modify the read_line function to extract timestamps from loglines? Or is this a Very Bad Idea for some or other reason? Regards, Jeroen. -- Jeroen Scheerder ON2IT B.V. Steenweg 17 B 4181 AJ WAARDENBURG T: +31 418-653818 | F: +31 418-653716 W: www.on2it.nl | E: [email protected] ------------------------------------------------------------------------------ _______________________________________________ Simple-evcorr-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/simple-evcorr-users
