From 5a3c191c97a7acf31cd43ef22a85598f51c384c8 Mon Sep 17 00:00:00 2001
From: Henri DF <henridf@gmail.com>
Date: Sun, 21 Feb 2016 20:29:47 -0800
Subject: [PATCH] Update README.md

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 75db2bdb..0a01215e 100644
--- a/README.md
+++ b/README.md
@@ -48,7 +48,7 @@ Set the path of the digwatch lua directory in the env var `DIGWATCH_LUA_DIR`:
 Create a file with some [digwatch rules](Rule-syntax-and-design). For example:
 ```
 write: (syscall.type=write and fd.typechar=f) or syscall.type=mkdir or syscall.type=creat or syscall.type=rename
-interactive: evt.type=execve and proc.pname=bash
+interactive: proc.pname = bash or proc.pname = sshd
 write and interactive and fd.name contains sysdig
 write and interactive and fd.name contains .txt
 ```