[ossec-list] Ossec-maild failed to start
I recently got this error starting my ossec server # /var/ossec/bin/ossec-control start Starting OSSEC HIDS v2.7.1 (by Trend Micro Inc.)... Started ossec-agentlessd... ossec-maild did not start correctly. This is what i get from /var/ossec/logs/ossec.log ossec-maild(2301): ERROR: Definition not found for: 'maild.geoip'. Any ideas how to fix it or what is causing the problem? Is there any idea i can reconfigure ossec server without losing my agents? Thank you in advance. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
Re: [ossec-list] Ossec-maild Failed to start
Thank you ill try that On Friday, January 17, 2014 2:27:27 PM UTC-6, dan (ddpbsd) wrote: > > On Fri, Jan 17, 2014 at 3:24 PM, Ian Martinez > > > wrote: > > Hello > > > > Recently i keep getting when i try to start ossec-control start > > > > Starting OSSEC HIDS v2.7.1 (by Trend Micro Inc.)... > > Started ossec-agentlessd... > > ossec-maild did not start correctly. > > > > This is what i get from the log: > > > > ossec-maild: DEBUG: Starting ... > > ssec-maild(2301): ERROR: Definition not found for: 'maild.geoip'. > > > > Any idea what can it be? Is there a way reconfigure ossec server without > > losing all my agents? > > > > It looks like you don't have the geoip stuff compiled in. Remove the > geoip stuff from the configuration or recompile with geoip support and > you should be good to go. > > > thanks in advance > > > > -- > > > > --- > > You received this message because you are subscribed to the Google > Groups > > "ossec-list" group. > > To unsubscribe from this group and stop receiving emails from it, send > an > > email to ossec-list+...@googlegroups.com . > > For more options, visit https://groups.google.com/groups/opt_out. > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
Re: [ossec-list] Ossec-maild Failed to start
On Fri, Jan 17, 2014 at 3:24 PM, Ian Martinez wrote: > Hello > > Recently i keep getting when i try to start ossec-control start > > Starting OSSEC HIDS v2.7.1 (by Trend Micro Inc.)... > Started ossec-agentlessd... > ossec-maild did not start correctly. > > This is what i get from the log: > > ossec-maild: DEBUG: Starting ... > ssec-maild(2301): ERROR: Definition not found for: 'maild.geoip'. > > Any idea what can it be? Is there a way reconfigure ossec server without > losing all my agents? > It looks like you don't have the geoip stuff compiled in. Remove the geoip stuff from the configuration or recompile with geoip support and you should be good to go. > thanks in advance > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to ossec-list+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/groups/opt_out. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
[ossec-list] Ossec-maild Failed to start
Hello Recently i keep getting when i try to start ossec-control start *Starting OSSEC HIDS v2.7.1 (by Trend Micro Inc.)...* *Started ossec-agentlessd...* *ossec-maild did not start correctly.* This is what i get from the log: *ossec-maild: DEBUG: Starting ...* *ssec-maild(2301): ERROR: Definition not found for: 'maild.geoip'.* Any idea what can it be? Is there a way reconfigure ossec server without losing all my agents? thanks in advance -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
[ossec-list] full_command netstat and other output in alerts.log file
The full output should be in a folder. Ive seen it before just dont recall where. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
