Out of curiosity Dan what do you use? I was looking at logstash + elastic search. I don't have funds for a commercial feed via alient vault, splunk or the like. :(
On Monday, December 29, 2014 7:14:03 AM UTC-5, dan (ddpbsd) wrote: > > On Mon, Dec 29, 2014 at 6:11 AM, Fred974 <trini...@gmail.com <javascript:>> > wrote: > > Sorry one more question.. > > Does it need to have read-write access or would read-only suffice? > > > > I don't know for sure. I don't use the WUI. I believe it needs read > permissions to the /var/ossec/tmp directory, but again, I don't use > the WUI. > > > On Monday, 29 December 2014 10:24:07 UTC, Fred974 wrote: > >> > >> Hello, > >> > >> My web server and the ossec server are on 2 different machines. > >> > >> When trying to setup the ossec web interface on my web server by > running > >> the ./setup.sh, it asked me for the 'OSSEC install directory path' > >> As the ossec install is not local to the machine, how do I tell it to > look > >> on the remote server? > >> > >> Thank you > >> Fred > > > > -- > > > > --- > > You received this message because you are subscribed to the Google > Groups > > "ossec-list" group. > > To unsubscribe from this group and stop receiving emails from it, send > an > > email to ossec-list+...@googlegroups.com <javascript:>. > > For more options, visit https://groups.google.com/d/optout. > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
