Hello Ossec list! First of all, let me say that I am thoroughly impressed with OSSEC and its capabilities. Secondly, I apologize ahead of time of these are "RTFM" questions but I did some research and was unable to find any answers.
My first question is whether or not there is a way to disable blacklisting of IPs completely or whether this is a whitelist only system. My second question is whether or not is is possible to use the Web UI to view activity on a remote host. Thank you in advance and thank you for providing such a wonderful program.
