Hello list,
I have tried many things until I just give up and ask for help. Basically
the centralized agent config not working.
At agent I remove the etc/shared/agent.conf
and etc/ossec.conf contains only
10.200.11.140
And in the server configured the shared/agent.conf like this
Hello. I recently purchased a hard copy of the OSSEC HIDS Host-Based
Intrusion Detection Guide for around $50 and was directed to
http://www.syngress.com/solutions to download my free e-book of the
material. At this web page (http://www.syngress.com/solutions) the
publisher says this service wa
You probably found the work in progress in 2009:
https://groups.google.com/forum/?fromgroups#!topic/ossec-list/rQPN6sRJDNM
No decoders for Juniper SA's are included in the current OSSEC release 2.6.
On Monday, July 30, 2012 8:54:02 AM UTC-7, Xme wrote:
>
> Dear OSSEC users,
>
> Maybe a dump ques
1/ Fixed (oops)
2/ This should now be fixed in the new version
Thanks for the info!
On Monday, July 30, 2012 9:37:33 AM UTC+1, Dmitry wrote:
>
> Many thanks for this GUI.
> But I have some bugs.
>
> 1/ Any rule on the chart says "level 5+".
> 2/ In detail.php slider (dragicon) is not shown prope
Dear OSSEC users,
Maybe a dump question but are some of you collecting logs from Juniper SA's
(SSP VPN).
I read a very old thread on the list but grepping for "Juniper" in my
decoder.xml does not return any line...
I don't want to reinvent the wheel. Any decoder rules to share?
/x
--
My server
Many thanks for this GUI.
But I have some bugs.
1/ Any rule on the chart says "level 5+".
2/ In detail.php slider (dragicon) is not shown properly.