search

ossec / ossec-hids

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
http://www.ossec.net
Other
4.33k stars 1.02k forks source link

It does not work in `Amazon Linux 2023` #2090

Closed OneideLuizSchneider closed 11 months ago

OneideLuizSchneider commented 12 months ago

It does not work on Amazon Linux 2023. I did try to add manually some libs but not successfully. I downgraded it back to Amazon Linux 2.

Not sure if someone else had the same problem.

bigtrucker89 commented 12 months ago

Amazon Linux 2023 is only supported with Atomic OSSEC at this time.

sempervictus commented 11 months ago

@atomicturtle - ABI problem or something else? Is this a "buildbots need to include it" concern?

atomicturtle commented 11 months ago

Yeah just builders. Does anyone know if amazon linux 2023 is a LTS version like amzn2?

OneideLuizSchneider commented 11 months ago

@atomicturtle Amazon Linux 2023 is the default version for all new EC2 instances.

https://aws.amazon.com/linux/amazon-linux-2023/

sempervictus commented 11 months ago

Yes, it's an LTS

atomicturtle commented 11 months ago

Looks fine here, I used the same setup for Rocky 8: dnf -y groupinstall "Development Tools" dnf -y install pcre2-devel openssl-devel systemd-devel

DLIBOPENSSL_ENABLED Compiler: CFLAGS -I./external/compat -DMAX_AGENTS=2048 -DOSSECHIDS -DDEFAULTDIR="/var/ossec" -DUSER="ossec" -DREMUSER="ossecr" -DGROUPGLOBAL="ossec" -DMAILUSER="ossecm" -DLinux -DINOTIFY_ENABLED -DHAVE_SYSTEMD -DZLIB_SYSTEM -DUSE_PCRE2_JIT -DLIBOPENSSL_ENABLED -Wall -Wextra -I./ -I./headers/ LDFLAGS -lm -lpthread -lsystemd -lpcre2-8 -lssl -lcrypto -lz CC cc MAKE make make[1]: Leaving directory '/root/ossec-hids/src' Done building server [root@fbcd80e374d9 src]# cat /etc/system-release Amazon Linux release 2023 (Amazon Linux) Closing this one out