Greetings, We are trying to determine the best replacement for our current IDS. We have installed the server and multiple clients. So far we are very impressed with this package! There does seem to be some concern about the plain text .conf file that holds the data on the client machines. Especially if the file has the database name, IP and password of the OSSEC server. Currently our IDS system has its config files encrypted with PGP/GPG keys. Is there a way to tighten access to the client ossec.conf in a similar manner?
Thanks, Phil Phil Gall Linux Administrator System Administration ICQ: 357781244
