--- syslog-ng.conf.gentoo.hardened.3.0.orig	2009-10-31 07:46:22.000000000 +0100
+++ syslog-ng.conf.gentoo.hardened.3.0	2009-10-31 07:47:29.000000000 +0100
@@ -80,10 +80,10 @@
 filter f_crit { level(crit); };
 filter f_err { level(err); };
 
-filter f_avc { match(".*avc: .*"); };
-filter f_audit { match("^audit.*") and not match(".*avc: .*"); };
-filter f_pax { match("^PAX:.*"); };
-filter f_grsec { match("^grsec:.*"); };
+filter f_avc { match("regex" value(".*avc: .*")); };
+filter f_audit { match("regex" value("^audit.*")) and not match("regex" value(".*avc: .*")); };
+filter f_pax { match("regex" value("^PAX:.*")); };
+filter f_grsec { match("regex" value("^grsec:.*")); };
 
 log { source(src); filter(f_authpriv); destination(authlog); };
 log { source(src); filter(f_syslog); destination(_syslog); };