Is it possible to use OSSEC to evaluate the log files from a server I don't have root access to? I'm helping a friend with a web site that was hacked and I'm trying to use OSSEC to find where the hacker got in. My hope is to download the logs and give them to OSSEC. I'm running vista and have centos running in vmware.
I found the post 'Installation and use without root access' but I can edit the etc dir.
