github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-09-23 10:57:59 +00:00
Code Issues Projects Releases Wiki Activity

Updated Falco Configuration (markdown)

Mark Stemm
2016-08-05 11:00:47 -07:00
parent a478da1760
commit 815574b11a
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
Falco-Configuration.md

@@ -30,7 +30,6 @@ a list containing these sub-keys:
* `enabled: [true|false]`: if true, falco alerts will be sent via syslog * `enabled: [true|false]`: if true, falco alerts will be sent via syslog
####`file_output` ####`file_output`
a list containing these sub-keys: a list containing these sub-keys:
@@ -45,3 +44,12 @@ a list containing thse sub-keys:
* `enabled: [true|false]`: if true, falco alerts will be sent to standard output * `enabled: [true|false]`: if true, falco alerts will be sent to standard output
####`program_output`
a list containing these sub-keys:
* `enabled: [true|false]`: if true, falco alerts will be sent to a program
* `program: <program>`: the program to run for each alert. This is started via a shell, so you can specify a command pipeline to allow for additional formatting.