On 21.09.2012 08:45, Dusty Jones wrote:
Will using nested if then else statements work in the ossec configuration files? I have a rule to not alert on Windows Filtering but it gets caught in a default rule and the only way I can think of not having it hit the default rule is by an if statement.
Show us the log and the rule and we'll be able to help.
