-
I am running ossec-hids-server and ossec-hids 2.9.0
Per documentation at https://ossec.github.io/docs/syntax/head_ossec_config.rootcheck.html?highlight=check_policy#element-check_policy I should be…
-
Are you planning to add YARA system to the snort system?
-
**_Reported by Inaky Perez-Gonzalez:_**
When an app contains a relative path to a source file, it creates object files outside the $O directory if it is different than "outdir":
```
$ cd PATH/TO/…
-
# Feature request
## Description
My personal physical instance has had issues with app and mon maintaining the ossec agent connection at times. It would be awesome if we had a filter for ossec t…
-
Hello
I install ossec agent (fresh install) and i choose agent, i put IP address of server and answer correctly to everything.
When i use
/var/ossec/bin/manage_agents
to Import the server key…
-
Hello,
I have been using syscheck (realtime) to monitor a directory. I notice that when modifying a **.txt** file only one alert per event is generated.However, when modifying other type of files …
JTSEC updated
7 years ago
-
I have installed OSSEC-HIDS 3.6.0 version to an Ubuntu server and installed the agent to a Windows 10.
The newly added agent is not shown in the WUI, although the agent is running.
How can I fix thi…
-
1. Deploy HIDS agent on Windows 2008 server
2. Disable auto_ignore option in ossec server configuration and restart ossec
`/etc/init.d/ossec restart`
3. Add real-time monitoring for C:\Data dir…
-
I found my ossec had large numbers of "Recv-Q" in udp port 1514,
I think it's because the ossec-analysisd process too slow.
what can I do to inprove it's performance?
how about the internal_opt…
-
Hello,
Thanks for publishing the new 3.7.0 RPM packages. It seems I'm having an issue getting `ossec-hids-agent` to work on RHEL 8 based systems. Tried on several systems at different locations, …