Any plans to implement some advanced alerting features in graylog2?
E.g. I have logs with ip addresses, user IDs and URLs.
I want to get an alert if within 15 minutes any userid accesses certain URL from different IP addresses.
In this case i want to track down users who shares they credentials with other people.
This alert would catch all kind of wget and curl downloads.