LML Ruleset to ignore cron jobs
When parsing auth.log, tons of alerts are send for cron jobs (producing lots of noise on real events).
This is an example file to show how to ignore how to ignore such events.
Add new ruleset to ignore cron jobs (Closes #266)
git-svn-id: file:///home/yoann/dev/prelude/git/nok/SVN/prelude-lml/trunk@10090 09c5ec92-17d4-0310-903a-819935f44dba
- Status changed from New to Closed
- Resolution set to fixed
(In r10090) Add new ruleset to ignore cron jobs (Closes #266)
- Project changed from PRELUDE SIEM to Prelude-LML
- Category deleted (
- Target version deleted (
Also available in: Atom