X-Git-Url: http://ftp.carnet.hr/carnet-debian/scm?p=ossec-hids.git;a=blobdiff_plain;f=etc%2Frules%2Flog-entries%2Fsymantecws;fp=etc%2Frules%2Flog-entries%2Fsymantecws;h=cd60ddac8e9f4eabfaa804768f98fb59283a7b7c;hp=0000000000000000000000000000000000000000;hb=ff0e686ac67bbd82b60c277eb324910dbc60f65f;hpb=33a81e69474ae91ecec4e991debe59e26bb330fd

diff --git a/etc/rules/log-entries/symantecws b/etc/rules/log-entries/symantecws
new file mode 100644
index 0000000..cd60dda
--- /dev/null
+++ b/etc/rules/log-entries/symantecws
@@ -0,0 +1,12 @@
+20070717,30020,1=3,41=SWS-3.0.1.86/lists,100=Version 3.0.3299,3=7,2=29
+20070717,30024,100=SWS-3.0.1.86,2=36
+20070717,30044,1=3,3=1,2=302
+20070717,30044,1=3,1202=20070715.002,1203=20070715.002,3=7,2=301
+20070717,30225,1=3,41=SWS-3.0.1.86/dictionaries,100=Version 3.0.638,3=7,2=29
+20070717,30517,1=3,41=SWS-3.0.1.86/vendor-config,100=Version 3.0.6,3=7,2=29
+20070717,40031,1=3,41=SWS-3.0.1.86/lists,100=Version 3.0.3299,3=7,2=29
+20070717,73613,1=5,11=10.1.1.3,10=userc,3=1,2=1
+20070717,103426,1=5,11=1.2.3.4,10=virtadmin,3=1,2=1
+20070717,73614,1=5,11=1.2.3.4,1106=News,60=http://news.bbc.co.uk/,10=userX,1000=212.58.240.42,2=27
+20070717,115252,1=5,11=1.2.3.4,1106=Miscellaneous,60=https://ad.doubleclick.net/,10=userY,1000=216.73.87.52,2=27
+20070717,122017,1=5,11=2.3.4.5,1106=Finance,60=http://www.esl.org/abc.exe,10=userB,1000=208.2.188.219,2=27