diff options
| author | Ermal <eri@pfsense.org> | 2012-07-11 20:27:21 +0000 |
|---|---|---|
| committer | Ermal <eri@pfsense.org> | 2012-07-11 20:27:21 +0000 |
| commit | b70bce8fcf06b81cc9eb6654773f4b95d0117b1e (patch) | |
| tree | eae673cae864e4530846e34ead68910ce2e2abf9 /config/snort | |
| parent | ea3027e321580218f2cded644d2b5f514fb0a953 (diff) | |
| download | pfsense-packages-b70bce8fcf06b81cc9eb6654773f4b95d0117b1e.tar.gz pfsense-packages-b70bce8fcf06b81cc9eb6654773f4b95d0117b1e.tar.bz2 pfsense-packages-b70bce8fcf06b81cc9eb6654773f4b95d0117b1e.zip | |
Unify description extraction from snort alerts
Diffstat (limited to 'config/snort')
| -rw-r--r-- | config/snort/snort_blocked.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/config/snort/snort_blocked.php b/config/snort/snort_blocked.php index b9a5a471..465e5804 100644 --- a/config/snort/snort_blocked.php +++ b/config/snort/snort_blocked.php @@ -131,7 +131,7 @@ function get_snort_alert_ip_src($fileline) function get_snort_alert_disc($fileline) { /* disc */ - if (preg_match("/\[\*\*\]\s+(\[[0-9:]+\])\s+(.+)\s+(\[\*\*\])/", $fileline, $matches)) + if (preg_match("/\[\*\*\] (\[.*\]) (.*) (\[\*\*\])/", $fileline, $matches)) return "{$matches[2]}"; return ""; |