|
Hi all,
For a new OSSEC deployment on production servers...
1. What are the pro's and cons of installing "latest" vs. "snapshot" release ?
a. Is snapshot considered "production ready" ?
2. Is snapshot a complete standalone package, or is it installed on top of the 2.0 base ?
a. Does the previous version need to be removed prior to installing the snapshot ?
3. What is the update strategy for vulnerability data?
a.
Are "rulesets" and "rootkits" the only vulnerability updates needed?
Thank You,
Ken Wachtler
|
