Hi all,
Has anyone attempted, or done this?
When triggered, it would look up the whois record for the IP and find the abuse
contact, sending them an email with the notification.
Just wanted to check around before adding it to my to-do list ;)
Being the abuse contact for about 25,000 IPs, I get
How do I ensure that I ignore these log files?
I have apache log files that are ending with a date/time in the
filename. The below isnt working for some reason.
ignore type=sregex/var/www/log/httpd_access.log.*/ignore
I also tried /var/www/log/httpd_access.log.\d+ but that didntn work
either.
On Wed, Dec 21, 2011 at 1:47 PM, BP9906 crazi...@gmail.com wrote:
How do I ensure that I ignore these log files?
I have apache log files that are ending with a date/time in the
filename. The below isnt working for some reason.
ignore type=sregex/var/www/log/httpd_access.log.*/ignore
That's
I only tried that after ignore type=sregex/var/www/log/
httpd_access.log.\d+/ignore failed to do the job.
Suggestions?
On Dec 21, 11:23 am, dan (ddp) ddp...@gmail.com wrote:
On Wed, Dec 21, 2011 at 1:47 PM, BP9906 crazi...@gmail.com wrote:
How do I ensure that I ignore these log files?
I
On Wed, Dec 21, 2011 at 3:00 PM, BP9906 crazi...@gmail.com wrote:
I only tried that after ignore type=sregex/var/www/log/
httpd_access.log.\d+/ignore failed to do the job.
Suggestions?
http://www.ossec.net/doc/syntax/regex.html#os-match-sregex-syntax
On Dec 21, 11:23 am, dan (ddp)
I am having issues installing ossec agent win32 - 2.6 on windows 2003.
I have attached the error that I receive when I try to install the
agent. If anyone has an idea please let me know.
This is the error message I receive. Windows cannot access the
specified device, path, or file. You may not
Thanks. I didnt see the sregex reference at the bottom, I obviously
was looking at the regex only part. :)
On Dec 21, 12:50 pm, dan (ddp) ddp...@gmail.com wrote:
On Wed, Dec 21, 2011 at 3:00 PM, BP9906 crazi...@gmail.com wrote:
I only tried that after ignore type=sregex/var/www/log/