Re: [ossec-list] Send OSSEC logs to graylog

On Sat, Sep 24, 2016 at 11:24 AM, wrote: > Hello, > > I'm having a problem getting OSSEC to send logs to a Graylog server and I'm > hoping someone can offer some advice. I followed the instructions on these > pages > > https://marketplace.graylog.org/addons/025e1992-8acb-4e37-8434-2785081bf977 >

Re: [ossec-list] Re: Can I build the OSSEC server without the three GeoIP packages?

On Fri, Sep 23, 2016 at 11:01 AM, Shawn Wiley wrote: > > What I was trying to say... > > Is there a way to install the OSSEC server package without the three GeoIP > packages? Also if I do not turn on the GeoIP functionality in the ossec.conf > file will the packages just sit dormant? I want to i

[ossec-list] Re: Active response command not present

Hi, if it is a linux agent, the restart-ossec.cmd will not work. You must use restart-ossec.sh. Check out the documentation: - http://ossec-docs.readthedocs.io/en/latest/manual/ar/index.html - http://ossec-docs.readthedocs.io/en/latest/syntax/head_ossec_config.active-response.html