I downloaded the latest OSSEC from bitbucket. I installed it. I can't
get it to start.
# /var/ossec/bin/ossec-control start
Starting OSSEC HIDS v2.6 (by Trend Micro Inc.)...
ossec-analysisd: Configuration error. Exiting.
I noticed that others had this error and it was resolved by fixing the
logtest line in /var/ossec/bin/ossec-control. I downloaded the latest
snapshot so it shouldn't have this bug, but I checked anyways.
# grep logtest /var/ossec/bin/ossec-control
echo | ${DIR}/bin/ossec-logtest > /dev/null 2>&1;
I was correct and this error is a different problem. Where should I
look to find the cause of this error?
I'm running this on OpenBSD 4.9 amd64 as a local install. My config is
very generic except for the customizations I made during install.
<ossec_config>
<global>
<email_notification>yes</email_notification>
<email_to>[email protected]</email_to>
<smtp_server>gmail-smtp-in.l.google.com</smtp_server>
<email_from>[email protected]</email_from>
</global>
Any thoughts?
