Hello, I don't know how to filter out unneeded alerts, if alert contains 'Account Name: SM_randomstring', for example, SM_f9295f8bdec14ffe9 Tried: <regex>Account Name:\s+SM+\.+\w</regex>
How to filter out such alerts? Thank you! -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.