Another suggestion would be to have the ability to turn off a rule when it relates to a specific application bug. ProFTP has an ipV6 bug that ossec notices every time and it gets annoying. FWIW, so does spamassassin.
JSC
- [ossec-list] Feature Suggestion Michael Starks
- [ossec-list] Re: Feature Suggestion Jay Curtis
- [ossec-list] Re: Feature Suggestion re:last Jay Curtis
