Log parsing allows alerts after event action / response. I can't recall if I toggled this on or if by default it was on.. At any rate I turned it on.
RE: admin user -> admin settings -> security
I've not fully read over feature 1227 but it reads technical.. response to a feature request where real world use may be clear?
It would be great if someone could provide an example of how log parsing is of use?
IE: why is it even an option?
I don't know enough to simply relate it accordingly.
RE: admin user -> admin settings -> security
- post event alerts will possibly be generated for a blocked IP (skip list = no)
- should procedure to prevent post event alerts be block + skip at admin response?
- other settings adjustments EG:
- Parse service logs for brute force attacks [y/n] Feature 1227
- Reset count of IP/User failed attempts [x] hours after last attempt
- Clear failed login attempts from log [x] days after entry was made
I've not fully read over feature 1227 but it reads technical.. response to a feature request where real world use may be clear?
It would be great if someone could provide an example of how log parsing is of use?
IE: why is it even an option?
I don't know enough to simply relate it accordingly.