thx for your help,
I upgraded to prelude-manager 0.9.15 with libprelude 0.9.23 and ossec's
alerts are now displayed with the good creation_date field, Ossec v2.2 is
may be incompatible with old libprelude version ...
2009/10/7 nine 13 tech fr...@nine13tech.com
I would drop a line to the
Hi Noel,
I don't know exactly what this eventr means, but if you want to ignore
those on OSSEC, try
this rule:
rule id=100356 level=0
if_sid18105/if_sid
id560/id
match\Device\NetbiosSmb/match
descriptionIgnoring event/description
/rule
In the match field you can ignore more parts of
Hi Chad,
If you run netstat do you see the ports 21 and 25 being listed? If
you run netcat can you bind
to those ports?
OSSEC basically tries to bind() to it and if it can't, it means that
the port is in use. We then check
on netstat to see if it is being reported.
Thanks,
--
Daniel B. Cid
Hi,
I have no clue what is going on. I searched for this error and it
seems a bug caused in gcc that can't
compile some AIX headers. The suggestion was to use the xlc compiler
instead of gcc.
Btw, what version of AIX and gcc are you using? I never had this
problem with AIX 5.2 and 5.3..
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Guys,
How can I ignore word error when it appear in web app log?
The method GET is something like that:
GET /20.htm HTTP/1.1 200 125258
http://dnserros.oi.com.br/main?ClientLocation; Mozilla/4.0
(compatible; MSIE 7.0; Windows NT 5.1;
Thanks Daniel,
That is excellent news. Thanks for the prompt response.
Regards,
Dan
On Oct 8, 3:51 pm, Daniel Cid daniel@gmail.com wrote:
Hi,
Thanks for the detailed report. It really helps to understand what is
going on. The issue
here is that OSSEC keeps track of the messages sent