Dear cgzones,
Can you please suggest where shall I add this option -qcpluscmt? Sorry, coz
I am new to this stuff..
Regards
Dipesh Maskey
On Thursday, August 28, 2014 3:41:34 PM UTC+5:45, cgzones wrote:
>
> Can you try to add the option -qcpluscmt. I seems your compiler doesn't
> like // commen
Dear cgzones,
Can you please suggest me where shall I add option -qcpluscmt. Sorry coz I
am new to this stuff...
Regards
Dipesh Maskey
On Thursday, August 28, 2014 3:41:34 PM UTC+5:45, cgzones wrote:
>
> Can you try to add the option -qcpluscmt. I seems your compiler doesn't
> like // comments
Dear all,
I have a Ossec manager and some agents, and I would like to add a second
manager in active-standby or active-active mode.
Is possible to configure high availability in Ossec? Is there any
documentation about it? I'm not able to find it.
Thanks in advance
Ricardo
--
---
You receiv
in src/Config.Make line 11 in the CFLAGS variable where you deleted the
wall option
On 29 Aug 2014 10:51, "dipesh maskey" wrote:
> Dear cgzones,
>
> Can you please suggest where shall I add this option -qcpluscmt? Sorry,
> coz I am new to this stuff..
>
> Regards
> Dipesh Maskey
>
> On Thursday,
I'm using 2.8 BTW.
--
---
You received this message because you are subscribed to the Google Groups
"ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ossec-list+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.co
Regardless of the rule ID it triggers, the issue I'm seeing is that while
manually testing the rule using the ossec-logtest tells me "alert to be
generated" but in actual testing (causing the event ID from a host with
agent running) no alerts or log entry is generated (except rule ID 1002). I
k
On Fri, Aug 29, 2014 at 2:33 PM, dan (ddp) wrote:
> On Wed, Aug 27, 2014 at 11:09 PM, Aeo de Vera wrote:
>> Hello,
>>
>> I was wondering if there is a way to configure a custom notification method.
>> Instead of just mailing, I'd like to send all alerts gathered in the server
>> to a cache.
>>
>>
On Wed, Aug 27, 2014 at 11:09 PM, Aeo de Vera wrote:
> Hello,
>
> I was wondering if there is a way to configure a custom notification method.
> Instead of just mailing, I'd like to send all alerts gathered in the server
> to a cache.
>
> I've tried using active responses on the server with limite
On Thu, Aug 28, 2014 at 9:05 PM, Tim Boyer wrote:
>
>
> On Thursday, August 28, 2014 11:32:47 AM UTC-4, dan (ddpbsd) wrote:
>>
>> On Thu, Aug 28, 2014 at 11:08 AM, dan (ddp) wrote:
>> > On Thu, Aug 28, 2014 at 10:19 AM, Tim Boyer wrote:
>> >> We've got an instance that we're finally ready to go
On Thu, Aug 28, 2014 at 12:53 PM, Paul Raines
wrote:
> But I guess I don't see how to do what I want except with 3 rules (including
> the original 31103) so 2 new rules in local_rules.xml
>
Then do it that way.
>
>
> 31103
>
>
>
> 100301
>
> select%20|select+|update%20|upd
On Fri, Aug 29, 2014 at 2:43 AM, wrote:
> Dear all,
>
> I have a Ossec manager and some agents, and I would like to add a second
> manager in active-standby or active-active mode.
> Is possible to configure high availability in Ossec? Is there any
> documentation about it? I'm not able to find it
On Fri, Aug 29, 2014 at 12:16 PM, velvin wrote:
> Regardless of the rule ID it triggers, the issue I'm seeing is that while
> manually testing the rule using the ossec-logtest tells me "alert to be
> generated" but in actual testing (causing the event ID from a host with
> agent running) no alerts
Hello,
I tested this with ossec server 2.8 and 2.7.1. When I added this rule to
an ignorerules.xml (its at the bottom of rules list in ossec.conf):
530
ossec: output: 'netstat -tan
Listened ports status (netstat) changed (new port opened
or closed).
Soon as I receive an
hi there,
so who's attending this year's OSSEC CON in Cork? :)
kind regards,
theresa
Am Donnerstag, 24. Oktober 2013 22:46:46 UTC+2 schrieb rocka...@gmail.com:
>
> hi there,
>
> i know recently there was an ossec conference in the US last summeri
> was wondering if there is any interest/dem
thanks ricardo and dan,
i was wondering the very same thing.
@dan: what do you mean by "rids" checks in particular?
Am Freitag, 29. August 2014 20:48:56 UTC+2 schrieb dan (ddpbsd):
>
> On Fri, Aug 29, 2014 at 2:43 AM, >
> wrote:
> > Dear all,
> >
> > I have a Ossec manager and some agents,
When I run syscheck_control –i on a specific agent it is displaying the
incorrect time. It is displaying the time the report ran for the Linux
boxes and for the Windows boxes it is displaying some random time sometimes
time stamped after the time the report runs.
The files were modified o
16 matches
Mail list logo
