I've just downloaded and played around with OSSEC (Which is Great) and
I'm trying to get my snort alerts sent to me via email. But it doesn't
seem to be working. This is what I've added to the ossec.conf file.
<localfile>
<log_format>snort-full</log_format>
<location>/var/log/snort/alert</location>
</localfile>
and this is the snort command line I use.
snort -c /etc/snort/snort.conf -A full -D
Snort is generating alerts, but I'm just not getting OSSEC to send this
to me. Thanks for the help. Oh yea ver is the lastest from yesterday.
--~--~---------~--~----~------------~-------~--~----~
-~----------~----~----~----~------~----~------~--~---
