What is mean of srcip_threat_indicated AND srcip_threat_indicated_spamhaus
My graylog server is enable threat intelligence we found log can detected false and true value of srcip_threat_indicated and srcip_threat_indicated_spamhaus
I checked IP is false of srcip_threat_indicated fielded with www.abuseipdb.com. It’s found on that bad IP. and checked is True is same result.