From 8ec04d4c212c6ffe29d5c6a5b75bcfb2ba5fe5ad Mon Sep 17 00:00:00 2001 From: neslog Date: Tue, 16 Jul 2013 09:35:54 -0400 Subject: [PATCH] Update README.md --- README.md | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 8cfb01d..12c1e10 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,14 @@ midas_patch =========== -MIDAS Patch +MIDAS Patch to generate ArcSight CEF formatted syslog output. The updated midas.py will look for [syslog] stanza in the midas-settings.cfg. If found it will set the variable do_syslog to true to enable logging. Example stanza below: + [syslog] + loghost = 192.168.1.10 + logport = 514 + + The patch will also enable varaibles to be set for the CEF log under the settings stanza. + +deviceVendor: MIDAS +deviceProduct: YARA +deviceVersion: 1 +