Даниил, огромное спасибо за помощь!
Решеение действительно очень простое!
--
---
You received this message because you are subscribed to the Google Groups
ossec-list group.
To unsubscribe from this group and stop receiving emails from it, send an email
to
Pavel, hello from Moscow!
Yes, you have a problem with encoding.
I don't know how OSSEC vm is setup, but I'm maintaining progect based on
Kibana, Logstash and Elasticsearch and experiencing same problems.
Solution is very simple - one line in config of Logstash in my case.
Look at my last commit
Hello,
Just set up a VM with Ossec from the Virtual Appliance template and
encountered a problem with monitoring Windows event logs.
I set up a security audit for shares under Windows 2008 Server and when
Ossec gets the log message i get the following output in Kibana -
2015 Mar 27 12:50:42
