Hi,
I am currently getting a lot of emails in regards to a php issue on the
server... ...this issue is not really a major problem, the server should
run without any problem even if i can see this in the logs...
...therefore, i would like to add an exception in Ossec, to stop
receiving those emails... here is the email i am getting... could
someone tell me exactly what to do to add an exception for it?? (i am
new to OSSEC... ...so please explain step by step ;o)
Received From: i51->/var/log/messages
Rule: 1002 fired (level 2) -> "Unknown problem somewhere in the system."
Portion of the log(s):
Apr 17 11:59:00 i51 kernel: xmlrpc[23889]: segfault at 0000000000000000 rip
0000000000416e7d rsp 00000000427080a0 error 4
