Add a method for deleting logs which meets some regexp

[sebthebert]

Add a method for deleting logs which meets some regexp

[sebthebert]

Date: 2009-07-30 20:48:00 Author: sebthebert

What do you really want ?

Do you want to delete logs 'manually' with a regexp ? Or do you want to 'automatically' delete incoming logs that match a regexp ?

Well, you can create a new Service with that regexp, then add this Service to Devices you want, and finally set logrotation for this Service to 1 day...

Tell me if it's enough for you..

[sebthebert]

Date: 2009-07-30 20:48:26 Author: sebthebert

• assigned_to: nobody --> sebthebert

[sebthebert]

Date: 2009-07-31 06:39:58 Author: nobody

Hi there! >Or do you want to 'automatically' delete incoming logs that match a regexp That's really thing I meant to

The new service with short period of log rotation will work OK, but as for me it's not the best way to do that. Because when I'm turning, for example, Windows_Snare service I hope (and it's logically ) to parse all Snare incoming logs with this service. Also I could set priority of each rule with it's rank, and deleting rule could be placed in the meddle of all rules. Another situation when I need to not to save some incoming messages of Windows_Snare, few ones of Oracle_listener, and several from Firewall. Number of services could grow really fast.

[sebthebert]

Date: 2009-07-31 07:02:15 Author: nobody

*in the MIDDLE of all rules