[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ossec-list] Re: regexp syntax?

To: ossec-list@xxxxxxxxxxxxxxxx
Subject: [ossec-list] Re: regexp syntax?
From: "Daniel Cid" <daniel.cid@xxxxxxxxx>
Date: Sun, 4 Feb 2007 18:30:28 -0400
Cc: "Sergey Zhumatiy" <serg@xxxxxxxxxxx>
Content-disposition: inline
Content-transfer-encoding: 7bit


Hi Sergey,

OSSEC has its own regex syntax, which is not fully compatible with the posix or
the perl. Yes, you can blame me for writting my own regex library :) The idea
was to do something very fast and simple, but over the time it expanded a
bit...

The following wiki entry explains what we support:

http://www.ossec.net/wiki/index.php/Know_How:Regex_Readme

Hope it helps.

--
Daniel B. Cid
dcid ( at ) ossec.net



On 2/2/07, Sergey Zhumatiy <serg@xxxxxxxxxxx> wrote:


  Hello!

  Where can I find full syntax for ossec regexps? It seems to be not
fully compatible with POSIX and not fully compatible with perl...
  Which symbols MUST be slashed, and which are not? Can I use '*'? And
so on...

--
  With respect
                                                   Serg.

References:
- [ossec-list] Two questions in one.
  - From: Mark Haney
- [ossec-list] Re: Two questions in one.
  - From: Daniel Cid
- [ossec-list] Re: Two questions in one.
  - From: Mark Haney
- [ossec-list] regexp syntax?
  - From: Sergey Zhumatiy

Prev by Date: [ossec-list] [Fwd: Re: [ossec-list] RE: Syslog ossec]
Next by Date: [ossec-list] Matching questions
Previous by thread: [ossec-list] regexp syntax?
Next by thread: [ossec-list] [sample] iptables martians log
Index(es):
- Date
- Thread

OSSEC home | Main Index | Thread Index

OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.