Michael,
if you remove if_sid, will it match anything? I am trying now to play
with it a bit and it doesn't match. I created vulnerable cgi script. All
40x attempts are matched by 31101.
**Phase 1: Completed pre-decoding.
full event: '111.111.111.111 - - [07/Oct/2014:12:53:51 +] GET
Hi,
We have automated the OSSEC key distribution with the help of ossec-authd.
Initially, it worked well with no issues. All the agents were getting the
keys and able to communicate fine with the server. Lately, whenever I am
trying to install OSSEC, the key distribution works correctly, but
So it turns out the using prevars in the install process was uneeded.
Uninstalling and reinstalling with it removed solved this issue.
On Monday, October 6, 2014 5:15:46 AM UTC-4, dan (ddpbsd) wrote:
On Oct 6, 2014 5:11 AM, Bryan Pearson bpea...@reverbnation.com
javascript: wrote:
I did
Awesome. Thanks for sharing. I look forward to seeing the rest of the
presentations when they get posted.
--
---
You received this message because you are subscribed to the Google Groups
ossec-list group.
To unsubscribe from this group and stop receiving emails from it, send an email
to