When using the blacklist in the inputs.conf file how can I group event codes and messages as seen below. As you can see I am creating several blacklist# for Event codes that I want to block that include a specific message. My understanding is that you can have a maximum of 9 black list. Can I use a , to separate these yet group them under blacklist 1? I would like to keep this organized and clean.

[WinEventLog://Security] disabled = 0 start_from = oldest current_only = 1 evt_resolve_ad_obj = 1 checkpointInterval = 5 blacklist1 = EventCode="4662" Message="Object Type:\s (?!groupPolicyContainer)" blacklist2 = EventCode="566" Message="Object Type:\s (?!groupPolicyContainer)" blacklist3 = EventCode="5156" Message="The Windows Filtering Platform has permitted a connection" blacklist4 = EventCode="5158" Message="The Windows Filtering Platform has permitted a bind to a local port" blacklist5 = EventCode="4656" Message="A handle to an object was requested" blacklist6 = 4648,4666, index = wineventlog renderXml=false