OSSEC 2.5.1, Fedora 13
In /var/ossec/etc/osse.conf, I have
command
namefirewall-drop/name
executablefirewall-drop.sh/executable
expectsrcip/expect
timeout_allowedyes/timeout_allowed
/command
active-response
commandfirewall-drop/command
locationlocal/location
rules_id31151/rules_id
On Wed, Oct 27, 2010 at 1:44 PM, Steven Stern
subscribed-li...@sterndata.com wrote:
In /var/ossec/etc/osse.conf, I have
command
namefirewall-drop/name
executablefirewall-drop.sh/executable
expectsrcip/expect
timeout_allowedyes/timeout_allowed
/command
active-response