Yes yes. This is A Good Thing. I know there are programs that do most
of the work automatically for you. I test the Transmission Bittorrent
client and they have a slick interface for downloading nightlies and
such.
http://transmission.xpjets.com/
Unfortunately, I don't know what the softwar
Hi,
How do you know it is not working? If you do a rule like:
tlips
Tesing Decoder
Does it work? Also, which device is this log from? If you can provide
more samples, we can
help you to add the decoders/rules for it.
Thanks,
--
Daniel B. Cid
dcid ( at ) ossec.net
On Wed, May 28, 2008 at
The 1.5.x with the changes would be nice too. Even for the snapshots you release
a changelog or cvs log would be good.
-Derek
>
> Hi,
>
> That's a very good idea. Another suggestion I received was to release
> small versions with these
> fixes (like v1.5.1, 1.5.2, etc). As for the changelog, eac
Hi,
I am glad it is working now. The defunct process that is showing up
now (from ossecm) is normal and it
will go away after the email is delivered (started by ossec-maild).
The issue is that we were closing a popen
call with fclose, instead of pclose. Strangely, it works on most
systems except
Hi Chris,
Currently, there is no way to specify that in the config, but I will
make sure to add that
for the next version (if you could open a bug at
http://www.ossec.net/bugs/ , it will guarantee
that we will not forget :)).
*If you are up to change the code, just go to file
src/shared/read-age
Hi,
That's a very good idea. Another suggestion I received was to release
small versions with these
fixes (like v1.5.1, 1.5.2, etc). As for the changelog, each versions
has its own at:
http://www.ossec.net/announcements/
*or do you mean a CVS changelog?
Thanks,
--
Daniel B. Cid
dcid ( at )
Thats a good idea, i have been wondering about a changelog myself
>
> Greetings:
>
> RE: http://www.ossec.net/main/downloads/
>
> Please consider adding links to the latest Unix and Windows builds
> which were created to resolve various problems (i.e. Windows
> disconnects), etc.
>
> Please incl
Greetings:
RE: http://www.ossec.net/main/downloads/
Please consider adding links to the latest Unix and Windows builds
which were created to resolve various problems (i.e. Windows
disconnects), etc.
Please include the date next to the build, and a change log
Thank you.
Hi,
I had similar problems with Solaris 10 installation. The patched version
so far works OK for me - no rapid explosion of zombies. Looks like
trying to close already closed FD was the problem:
4226: vfork() = 8956
8956: vfork() (returning a
Hi all
I am wondering where my last post is... Hm, trying again:
I tried it on the same Solaris 8 machine:
(machine:root) # date
Mon May 26 09:59:34 MEST 2008
(machine:root) # cd /var/ossec/bin
(machine:root) # ./ossec-control start
Starting OSSEC HIDS v1.5 (by Daniel B. Cid)...
Started ossec-m
Hello!
I have a feature request for your Windows agent. Can you add the event type
'MIMEsweeper Log' in the validator for 'eventlog' or can you add a option
for disable the Windows eventlog validator in the internal_options.conf?
Thanks,
Bernd Schenk, Germany
11 matches
Mail list logo