OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
thank you very much for this helpful program. I am using it since early 2020 but this weekend it started to send me email notifications about changed ports every few minutes (I redacted my SSH port as I don't use the default to have less noise in the logs and want to keep it that way):
Dear ossec-hids maintainers,
thank you very much for this helpful program. I am using it since early 2020 but this weekend it started to send me email notifications about changed ports every few minutes (I redacted my SSH port as I don't use the default to have less noise in the logs and want to keep it that way):
I am using v3.7.0 on Debian Bullseye amd64.
Do you have any idea what could be causing this?