Daniel, Thanks for the update! I just updated OSSEC but noticed 'remnants' of 2.4.1 in various places:
manage_agents: **************************************** * OSSEC HIDS *v2.4.1 *Agent manager. * * The following options are available: * **************************************** (A)dd an agent (A). (E)xtract key for an agent (E). (L)ist already added agents (L). (R)emove an agent (R). (Q)uit. agent_control -i 002:* *OSSEC HIDS agent_control. Agent information: Agent ID: 002 Agent Name: irutapppvn22 IP address: 10.33.228.41 Status: Active Operating system: Linux irutapppvn22 2.6.18-92.el5 #1 SMP Tue Apr 29 1.. Client version: *OSSEC HIDS v2.4.1* Last keep alive: Tue Sep 28 09:01:47 2010 Syscheck last started at: Tue Sep 28 08:56:39 2010 Rootcheck last started at: Unknown ossec-agentd -V:* OSSEC HIDS v2.4.1 - Trend Micro Inc. * Is this intended? Thanks, Jeremy On Mon, Sep 27, 2010 at 8:18 PM, Daniel Cid <[email protected]> wrote: > Hi list, > > OSSEC v2.5 is out. Full details at: > http://www.ossec.net/main/ossec-v25-released > > What is new? > > 1. Added support for “report_changes” on syscheck to show what was > changed in the file modification alert. > 2. Added support for cdb lists inside the rules. > 3. Added support for drop-in rules and decoders directory. > 4. Added a Rule unit testing framework (in python) and inside logtest > 5. Added support for a generic multi-line log reader. > 6. Added granular Windows rules. > 7. Added option to restrict integrity checking to a set of files. > 8. Added alias option to the command monitoring. > 9. Added silent switch for windows installer. > 10. Added variable expansion in command output monitoring. > 11. Fixed several windows installer bugs. > > Full changelog here: > http://www.ossec.net/announcements/v2.5-2010-09-28.txt > > Download it from here: > http://www.ossec.net/main/downloads > > Thanks! > > -- > Daniel B. Cid > [email protected] >
