We need to basically ignore all filetype extensions except a specific list - we only care about integrity checking on *.exe, *.bat, *.com, *.cmd and *.dll files
I've thought about using an "ignore files" regex with a NOT operator, and just include my 5 file types as the NOTs. I can't tell if http://www.ossec.net/wiki/Know_How:Regex_Readme says if the way I need a NOT operator (?! in regex I think..) will work... PS This is something we're implementing in order to pass a DIACAP audit, so I'm not the only one who would be helped by a resolution to this (this is finding V0002907 in the Windows DIACAP STIG if anyone is curious)
