Hey Tanishk, I'm OK with the log files, it's the database I'm trying to remove older events from.
Dimitris -----Original Message----- From: [email protected] To: [email protected] Sent: Tue Feb 22 02:26:23 2011 Subject: Re: [ossec-list] How to purge/remove/delete data older than a specific date from within the database Hi, Just type in the following commands: cd /var/ossec/logs/alerts/<year>/<month>/ Here you find the logs of all the days in each month. Just delete them using rm -rf command. I havent come across any oher automated tool for the same. Regards Tanishk On Mon, Feb 21, 2011 at 5:31 PM, Dimitris Chontzopoulos <[email protected]> wrote: Hello everyone, We're trying to remove data from within the OSSEC Database that are older than a specific date, but we can't find a tool that would remove that data easily without harming the rest of the database. Is there a query of some sort we could run, so as to gather the data we're interested in and remove them afterwards? This might be a stupid question but I'm no MySQL Administrator or 'that' experienced at all. Kind regards, Dimitris -- warm regards Tanishk Lakhaani
