How do I ensure that I ignore these log files?
I have apache log files that are ending with a date/time in the
filename. The below isnt working for some reason.
<ignore type="sregex">/var/www/log/httpd_access.log.*</ignore>
I also tried /var/www/log/httpd_access.log.\d+ but that didntn work
either.
Its in agents.conf file.
<agent_config name="server">
<syscheck>
<scan_on_start>no</scan_on_start>
<frequency>21600</frequency>
<directories check_all="yes">/var/www/log/</directories>
<ignore type="sregex">/var/www/log/httpd_access.log.*</ignore>
</syscheck>
...
Any suggestions?
