Hi! What is the cleanest and easiest way to updates rules and signatures of attacks and threats in ossec? I'm looking maybe for a command I could use to automate it. When I execute bin/manage_agents -V (to obtain version), I get this: OSSEC HIDS v2.8.3 - Trend Micro Inc.
According to the documentation for 2.8.1 right here <http://ossec-docs.readthedocs.io/en/latest/manual/installation/updates.html>, in order to update those rules, we have to download the installation package and reinstall it. The installation script should ask us to update. That seems pretty complicated and unorthodox. Is there a simpler way? Also, I think I should ask that question: Does anyone know how often does ossec update their signatures and rules, or if they update them at all? Thanks! -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
