On slightly related note. Could someone please update the rule reference on http://www.ossec.net/doc/rules/rules/index.html Compare the ossec rules as an example: documentation: http://www.ossec.net/doc/rules/rules/50_ossec_rules.xml.html current source: https://bitbucket.org/jbcheng/ossec-hids/src/60fa0f8a2bcc/etc/rules/ossec_rules.xml?at=default
Regads Christian Am 11.03.2013 11:24, schrieb mikes: > Of course not: Publication Date: March 17, 2008 | > > However, 2.7 and 2.6 is the same, here is all changes: > http://www.ossec.net/?p=577 > > Writing rules and configurations is the same. > > W dniu poniedziałek, 11 marca 2013 10:26:40 UTC+1 użytkownik Gerard > Petersen napisał: > > Hi All, > > I'm currently testing OSSEC (2.7). I'm clear on what I want to > know from my infrastructure, the learning curve for me is to > figure out how OSSEC can do this for me. > > Is the book on amazon still good or has there been to many changes > since OSSEC 2.7 in the nitty-gritty to be usefull. In other words > would the online found documentation suffice? > > Ref: > > http://www.amazon.com/OSSEC-Host-Based-Intrusion-Detection-Guide/dp/159749240X > > <http://www.amazon.com/OSSEC-Host-Based-Intrusion-Detection-Guide/dp/159749240X> > > Thanx a lot. > > Kind regards, > > Gerard. > > -- > > --- > You received this message because you are subscribed to the Google > Groups "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send > an email to [email protected]. > For more options, visit https://groups.google.com/groups/opt_out. > > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
