On Sat, Sep 24, 2016 at 11:24 AM, wrote:
> Hello,
>
> I'm having a problem getting OSSEC to send logs to a Graylog server and I'm
> hoping someone can offer some advice. I followed the instructions on these
> pages
>
> https://marketplace.graylog.org/addons/025e1992-8acb-4e37-8434-2785081bf977
>
On Fri, Sep 23, 2016 at 11:01 AM, Shawn Wiley wrote:
>
> What I was trying to say...
>
> Is there a way to install the OSSEC server package without the three GeoIP
> packages? Also if I do not turn on the GeoIP functionality in the ossec.conf
> file will the packages just sit dormant? I want to i
Hi,
if it is a linux agent, the restart-ossec.cmd will not work. You must use
restart-ossec.sh.
Check out the documentation:
- http://ossec-docs.readthedocs.io/en/latest/manual/ar/index.html
-
http://ossec-docs.readthedocs.io/en/latest/syntax/head_ossec_config.active-response.html