I have added to /var/ossec/etc/shared/agent.conf a profile for a class of
machine and updated the agent's ossec.conf with the config-profile in the
block.
Do I need to remove the , and all entries
on the client or will the manager simply override them? Is the result
"either (the manager co
On Aug 21, 2017 4:39 PM, "Leroy Tennison" wrote:
I have added to /var/ossec/etc/shared/agent.conf a profile for a class of
machine and updated the agent's ossec.conf with the config-profile in the
block.
Do I need to remove the , and all entries
on the client or will the manager simply overri
Thank you for your reply, sadly, that's exactly what I've done (doubled
up). I'll go fix that. Correct me if I'm wrong but, from your reply, it
appears that I need to examine both the manager's agent.conf as well as the
agent's ossec.conf to determine the "effective" configuration.
On Monda
On Aug 22, 2017 11:55 AM, "Leroy Tennison" wrote:
Thank you for your reply, sadly, that's exactly what I've done (doubled
up). I'll go fix that. Correct me if I'm wrong but, from your reply, it
appears that I need to examine both the manager's agent.conf as well as the
agent's ossec.conf to det
Hopefully final question about this, I notice the default manager's
agent.conf has a configuration simply for os="linux" (and windows) as well
as one which has no qualifier, I'm assuming those configurations apply to
all systems with that os and all systems respectively. Correct?
Suggestion,
On Aug 22, 2017 12:52 PM, "Leroy Tennison" wrote:
Hopefully final question about this, I notice the default manager's
agent.conf has a configuration simply for os="linux" (and windows) as well
as one which has no qualifier, I'm assuming those configurations apply to
all systems with that os and a
We are thinking of installing OSSEC+ versus OSSEC Atomic for file integrity
monitoring (FIM)
My understanding is that OSSEC+ will give us FIM by itself. Is there an
advantage for FIM for installing OSSEC Atomic? We need to file reports
around FIM for PCI conformance.
We plan on installing agen
