agent.conf
syscheck is not?
cheers,
Henry
On Saturday, March 25, 2017 at 6:50:03 AM UTC-6, henry.wil...@gmail.com
wrote:
>
> Hello fellow googlers,
>
>
> The GOAL:
>
> For every user on my windows OSSEC agent, generate OSSEC alert severity 10
> when new file added to
d
use. Please let me know if any additional details are required to assist
with my request. Any help or guidance is much appreciated.
Cheers,
Henry
--
---
You received this message because you are subscribed to the Google Groups
"ossec-list" group.
To unsubscribe from this gro
I have managed to create a small bash script that installs OSSEC and uses
ossec-authd to automatically authenticate the agent with the server. How is
this done with Windows? Does windows support ossec-authd? If yes, how can I
silently install OSSEC with my preconfigured variables and automatically
Hello ,
I am actually searching for some commercial assistance for the
initial configuration of my OSSEC environment.
For contractual and financial reason, my preference is an assistance with a
company with a french branch.
The environment is actually working well on my servers but not
ent: HP Unix 11.23
OSSEC version: 2.5.1
There are a couple agents installed, but only one agent is brought up.
All ossec processes are restarted on both server and agents.
On Jan 20, 3:43 am, "dan (ddp)" wrote:
> Hi Henry,
>
>
>
>
>
> On Wed, Jan 19, 2011 at 3:55 AM,
I have installed the ossec with server and agents, I was able to
connect the agent with the server, but shortly, it appears on the
client is down with client log file
2011/01/15 01:02:04 ossec-syscheckd(1224): ERROR: Error sending
message to queue.
2011/01/15 01:02:13 ossec-syscheckd: socket busy
:29:10 ossec-syscheckd: socket busy ..
2011/01/10 06:29:10 ossec-syscheckd: socketerr (not available).
2011/01/10 06:29:10 ossec-syscheckd(1224): ERROR: Error sending
message to queue.
On Dec 25 2010, 3:43 am, "dan (ddp)" wrote:
> Check the ossec.log on the agents that disconnect and the ma
ased for
> remote agents?
>
>
>
> -Original Message-
> From: ossec-list@googlegroups.com [mailto:ossec-l...@googlegroups.com] On
> Behalf Of Henry
> Sent: Thursday, December 23, 2010 4:16 AM
> To: ossec-list
> Subject: [ossec-list] Unstable ossec connections
>
>
I have been setting up with a ossec server and a ossec agent
installed. I can use the syscheck_control -lc command on server side
to see the agent. But usually after several hours without
disruptions, the syscheck_control -lc command cannot see the agents.
The only thing I can do is to restart th
I have been unable to configure agents to connect to server, the log
for the agent is as follows:
2010/12/03 14:34:42 ossec-logcollector(1225): INFO: SIGNAL Received.
Exit Cleaning...
2010/12/03 14:34:42 ossec-syscheckd(1225): INFO: SIGNAL Received. Exit
Cleaning...
2010/12/03 14:34:42 ossec-agent
My gcc version is 4.0.2
On Nov 20, 3:39 am, "dan (ddp)" wrote:
> What version of gcc are you using?
>
>
>
> On Thu, Nov 18, 2010 at 1:47 AM, Henry wrote:
> > I got the same problem even I used the latest version
>
> > On Nov 17, 10:48 pm, "dan (dd
I got the same problem even I used the latest version
On Nov 17, 10:48 pm, "dan (ddp)" wrote:
> Try the latest snapshot:http://ossec/net/files/snapshots
>
>
>
> On Wed, Nov 17, 2010 at 3:58 AM, Henry wrote:
> > I have tried to install ossec on hp-unix version 11.
clude/machine/sys/getppdp.h:65: error: array type has
incomplete element type
*** Error code 1
Stop.
make: stopped in /storage1/henry/ossec-hids-2.5.1/src/rootcheck
Error Making rootcheck
*** Error code 1
Stop.
make: stopped in /storage1/henry/ossec-hids-2.5.1/src
Error 0x5.
Building error. Una
create either self-signed certs,
or even making your own CA. The commands are a little hairy looking, but
very doable. I got tripped up just by having the system clocks too far
out of sync, they need to be accurate for TLS encryption to succeed.
Hope this helps.
- --
Henry Blum
-BEGIN PGP SIGNAT
eport.
See http://developer.apple.com/bugreporter> for instructions.
make[1]: *** [logaudit] Error 1
Error Making analysisd
make: *** [all] Error 1
Error 0x5.
Building error. Unable to finish the installation.
Thanks in advance.
--
Henry Blum
Systems Administrator &
Information Security
15 matches
Mail list logo
