Thanks! I'd appreciate the help :)
On Tuesday, November 1, 2016 at 8:27:43 PM UTC, dan (ddpbsd) wrote:
>
> On Nov 1, 2016 2:12 PM, "Eponymous -" >
> wrote:
> >
> > Just after I posted that message I had an idea to check the permissions
> again and it looks like they were wrong.
> >
> > The permi
On Wed, Nov 2, 2016 at 12:00 PM, Matthew Casperson
wrote:
> I've been trying to track down where it details how often signatures are
> updated for OSSEC. Are new signatures part of each version? E.g. if I am
> on 2.8.2 and want to have the most up to date signatures would I have to
> upgrade to
I've been trying to track down where it details how often signatures are
updated for OSSEC. Are new signatures part of each version? E.g. if I am
on 2.8.2 and want to have the most up to date signatures would I have to
upgrade to the current version of OSSEC or are signatures updated
independ
Hi Santiago and others,
Interesting thread (even if dated). I did something similar today and got
an OSSEC agent to forward Windows Server Events according to below to the
OSSEC server. I have some experience writing decoders to syslog event (but
limited as you can see in this forum :)). How w
Hi,
I have OSSEC running on a number of machines and on some of them I'm getting
frequent rule 533 alerts (listen ports changed). However, the notifications
don't make sense.
I've pasted the alerts.log output to http://pastebin.com/1Yn4xKS0
Basically: I don't see any difference. I copy pasted
