+++ /dev/null
-**Phase 1: Completed pre-decoding.
- full event: 'May 21 10:24:54 niban useradd[6070]: new group: name=test, gid=5006'
- hostname: 'niban'
- program_name: 'useradd'
- log: 'new group: name=test, gid=5006'
-
-**Phase 2: Completed decoding.
- No decoder matched.
-
-**Phase 3: Completed filtering (rules).
- Rule id: '5901'
- Level: '8'
- Description: 'New group added to the system'
-**Alert to be generated.
-
-
projects / ossec-hids.git / blobdiff