Re: [ossec-list] Agent Duplicate Folders Message

The server I'm using for testing went down, as soon as I get it back I'm gonna review it. Thank you very much for your help, relly appreciated Regards El viernes, 14 de octubre de 2016, 10:26:53 (UTC-3), dan (ddpbsd) escribió: > > On Fri, Oct 14, 2016 at 8:55 AM, Kernel Panic &

Re: [ossec-list] Agent Duplicate Folders Message

de octubre de 2016, 14:47:25 (UTC-3), dan (ddpbsd) escribió: > > On Thu, Oct 13, 2016 at 1:09 PM, Kernel Panic <netwar...@gmail.com > > wrote: > > Hi > > Does this still apply? > > I have this option enabled: yes along > > with the realtime=yes.

Re: [ossec-list] Agent Duplicate Folders Message

) escribió: > > On Thu, Oct 13, 2016 at 1:09 PM, Kernel Panic <netwar...@gmail.com > > wrote: > > Hi > > Does this still apply? > > I have this option enabled: yes along > > with the realtime=yes. > > > > From another post on the list: > >

Re: [ossec-list] Agent Duplicate Folders Message

Thank you! El jueves, 13 de octubre de 2016, 14:47:25 (UTC-3), dan (ddpbsd) escribió: > > On Thu, Oct 13, 2016 at 1:09 PM, Kernel Panic <netwar...@gmail.com > > wrote: > > Hi > > Does this still apply? > > I have this option enabled: yes along > >

Re: [ossec-list] Agent Duplicate Folders Message

rt.x86_64 Thank you very much!! Regards El jueves, 13 de octubre de 2016, 10:32:16 (UTC-3), dan (ddpbsd) escribió: > > On Thu, Oct 13, 2016 at 9:21 AM, Kernel Panic <netwar...@gmail.com > > wrote: > > > > Hi > > Let's see, shouldn't I have to configure on

Re: [ossec-list] Agent Duplicate Folders Message

Thank you very much for your clarification, now it's much more clear to me!!! Regards El jueves, 13 de octubre de 2016, 10:32:16 (UTC-3), dan (ddpbsd) escribió: > > On Thu, Oct 13, 2016 at 9:21 AM, Kernel Panic <netwar...@gmail.com > > wrote: > > > > Hi >

Re: [ossec-list] Agent Duplicate Folders Message

/root,/home,/etc Thank you very much Best Regerds El miércoles, 12 de octubre de 2016, 20:19:08 (UTC-3), dan (ddpbsd) escribió: > > On Oct 12, 2016 4:49 PM, "Kernel Panic" <netwar...@gmail.com > > wrote: > > > > Hi there guys, > > > > When starti

Re: [ossec-list] Agent Duplicate Folders Message

for your patience. Regards El miércoles, 12 de octubre de 2016, 20:19:08 (UTC-3), dan (ddpbsd) escribió: > > On Oct 12, 2016 4:49 PM, "Kernel Panic" <netwar...@gmail.com > > wrote: > > > > Hi there guys, > > > > When starting the agent I've get t

Re: [ossec-list] Agent Duplicate Folders Message

to include the directories right? make sense, my bad. Thank you very much Best Regards El miércoles, 12 de octubre de 2016, 20:19:08 (UTC-3), dan (ddpbsd) escribió: > > On Oct 12, 2016 4:49 PM, "Kernel Panic" <netwar...@gmail.com > > wrote: > > > > Hi there

[ossec-list] Agent Duplicate Folders Message

Hi there guys, When starting the agent I've get this info: *Starting ossec-hids: 2016/10/12 15:43:05 ossec-agentd: INFO: Using notify time: 600 and max time to reconnect: 1800* 2016/10/12 15:43:05 ossec-config(1756): ERROR: Duplicated directory given: '/root'. 2016/10/12 15:43:05

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

Really do not know, just installed it from repo and tried to start the service. Thanks Regards El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escribió: > > Hi guys, > Yes, I've been reading the error on the list, lots of cases and I got it > too but I run

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

much! Regards El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escribió: > > Hi guys, > Yes, I've been reading the error on the list, lots of cases and I got it > too but I run out of idea. > > The log: > > 2016/10/11 13:04:40 ossec-syscheckd(1210): ERROR: Qu

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

:::* On the remote section I've got the following ( the documentation says it will take default values ) secure Thank you for your time and support Regards El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escribió: > > Hi guys, > Yes,

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

is running... Now, which is the port that should be listening for agent connections? >From the client: Trying to connect to server (x.x.x.x:1514) On the server: lsof -i:1514 ( nothing) Thanks in advance. Regards El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escri

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

ossec-syscheckd(1210): ERROR: Queue '/var/ossec/queue/ossec/queue' not accessible: 'Connection refused'. 2016/10/12 08:09:08 ossec-rootcheck(1210): ERROR: Queue '/var/ossec/queue/ossec/queue' not accessible: 'Connection refused'. El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

not available, ignoring it: '/var/www/logs/error_log'. El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escribió: > > Hi guys, > Yes, I've been reading the error on the list, lots of cases and I got it > too but I run out of idea. > > The log: > > 2

[ossec-list] Re: Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

win_applications_rcl.txt -rw-rw. 1 ossec root 3944 Apr 8 2016 win_audit_rcl.txt -rw-rw. 1 ossec root 5005 Apr 8 2016 win_malware_rcl.txt Thanks in advance. El martes, 11 de octubre de 2016, 15:22:03 (UTC-3), Kernel Panic escribió: > > Hi guys, > Yes, I've been reading

[ossec-list] Same old song ERROR: Unable to access queue: '/var/ossec/queue/ossec/queue

Hi guys, Yes, I've been reading the error on the list, lots of cases and I got it too but I run out of idea. The log: 2016/10/11 13:04:40 ossec-syscheckd(1210): ERROR: Queue '/var/ossec/queue/ossec/queue' not accessible: 'Connection refused'. 2016/10/11 13:04:40 ossec-rootcheck(1210): ERROR: