Does your linux distro have inotify support in the kernel? Do you have the necessary libraries and whatnot installed? Did ossec properly pick this up when it was being compiled?
On Mon, Apr 19, 2010 at 12:29 PM, Brad Hazledine <[email protected]> wrote: > Hi there, > > I enabled realtime monitoring and I am getting the following error, > > 2010/04/19 12:01:50 ossec-syscheckd: INFO: Monitoring directory: > '/my/directory'. > 2010/04/19 12:01:50 ossec-syscheckd: WARN: Ignoring flag for real time > monitoring on directory:'/my/directory' > > I am running ossec 2.4 > > Can anyone suggest what the problem may be? > > Thanks, > > -Brad > > > > > > > -- > Subscription settings: > http://groups.google.com/group/ossec-list/subscribe?hl=en >
