The biggest problem for me was the need to write scripts to deploy the agents, specifically on Windows clients. I expect the new auth-d would work on Linux but didn't seem to be supported on Windows.
The second thing for me is the difficulty of getting the logs viewable in some web based method, but that has been done (almost to death) in the ossec-wui thread. -- James Pulver Information Technology Area Supervisor LEPP Computer Group Cornell University -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Michael Starks Sent: Wednesday, October 26, 2011 7:01 AM To: ossec-list Subject: [ossec-list] 3WoO Day 4: What bugs you: problems, challenges and room for improvement. List the most annoying bugs. What makes OSSEC difficult to use? What is the biggest area for improvement? What are we missing? Any rules fp too much? Now is the time to get it all out. -- Michael Starks [I] Immutable Security http://www.immutablesecurity.com
