Ps we do get alerts
like Account locked, Authentication failure so on.
Can you help us on this.
On Monday, August 28, 2017 at 11:24:22 PM UTC+5:30, dan (ddpbsd) wrote:
>
> On Mon, Aug 28, 2017 at 2:25 AM, Tirumala Raja Siriki
> <tiruma...@opsveda.com > wrote:
> > Email le
(ddpbsd) wrote:
>
>
>
> On Aug 24, 2017 8:31 AM, "Tirumala Raja Siriki" <tiruma...@opsveda.com
> > wrote:
>
> Hi Everyone,
>
> I am running Ossec 2.8.3 version on Server as well as agents. I am not
> getting any email alerts from Ossec Server(Suse Linux)
Hi Everyone,
I am running Ossec 2.8.3 version on Server as well as agents. I am not
getting any email alerts from Ossec Server(Suse Linux) for one of the agent
which is also running on Suse Linux.
I see alerts are getting logged in /var/ossec/logs/alerts/alerts.log file
but no emails
Hi Everyone,
Email alert mismatch, I have email alerts from Ossec agent(Suse Linux) with
message header as "Successful sudo to ROOT executed",with but the content
in the alert is for other Ossec agents(RDP servers).
The Email alert looks like this:
OSSEC Alert - Agent Name(Linux) - Level 14