Hello Dan, thank's a lot for the helpful feedback :-)
->For me it is more important, that the OSSEC agents runs on a hardened/trusted system As I understand OSSEC(please correct me if i am wrong/we did not yet even install OSSEC) the agents are installed on the systems to be monitored and the agents can never be considered as secure (that's why OSSEC monitors them)... Thank's a lot for any additional feedback! John Dan schrieb: > Hi John > > For me it is more important, that the OSSEC agents runs on a hardened/ > trusted system, because they have to be secure and do all the > communication with the bad world ;-) But it is a good idea to secure > the OSSEC server too. > I did an implementation of OSSEC with ubuntu secured by GRSecurity. > And it works fine. Unfortunately i can't provide a HowTo becuase it > was a project with a customer. > > If you have already hardened linux systems in place i would recommend > to use them rather to install it on a BSD. Then you have not another > system more in place to configure/patch and so on. > > Regards, > Dan > > Am 14.01.2008 um 10:16 schrieb Verlag Neue Stadt: > > >> Hello, >> >> how important is it to install the OSSEC server on a hardened/trusted >> system? >> >> Is there somewhere a HowTo prepare/install a secured Linux for OSSEC >> available? >> Or would you rather recommend to install OSSEC on BSD? >> >> >> Thank's a lot for your feedback! >> >> John >> >> >> -- ________________________________________________________________ Verlag Neue Stadt Verenastrasse 7 8038 Zürich Tel +41 (0)44 482 60 11 Fax +41 (0)44 482 60 17 [EMAIL PROTECTED] www.neuestadt.ch ________________________________________________________________
