Hello,
I am new to OSSEC however, it will be set up in my environment and I am
trying to get an idea of what it takes to set up the agentless ossec. What
will be needed for the install/configuration on the target system?
Also in looking at some outputs of OSSEC agentless, I noticed there is
On Aug 18, 2017 8:35 AM, "Tray" wrote:
Hello,
I am new to OSSEC however, it will be set up in my environment and I am
trying to get an idea of what it takes to set up the agentless ossec. What
will be needed for the install/configuration on the target system?
An ssh daemon.
Also in lookin
Thanks for the response. So is there an account that will ssh into the
target machine? and if so is it using keys instead of a password?
In regards to my second question: We have logs going to splunk to review
changing of files but I am not getting "who" changed the file.
On Friday, August 1
On Fri, Aug 18, 2017 at 1:58 PM, Tray wrote:
> Thanks for the response. So is there an account that will ssh into the
> target machine? and if so is it using keys instead of a password?
>
On the OSSEC manager, the ossec account will ssh to the agentless
system using whichever account you've con
