Hi, is there a way to mask sensitive data in the diffs when report_changes parameter is set? E. g. a password is changed and OSSEC sees the change in /etc/shadow or /etc/master.passwd and reports the diff via (unencrypted) email. I would like the password hash to be masked out in the diff.
Any advise is highly appreciated. Thanks Winni -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
