> I think that is a legitimate concern. For most companies, it is probably not > a realistic concern because, let's face it, we still have to deal with > syslog, and that is a lot worse. But that doesn't mean we shouldn't address > the issue of non-expiring keys. Key rotation would be a good thing to have > in OSSEC, along with automation of handling the keys in general.
Seconded! -rich
