On Wed, Oct 26, 2011 at 8:21 AM, James M Pulver <[email protected]> wrote: > The biggest problem for me was the need to write scripts to deploy the > agents, specifically on Windows clients. I expect the new auth-d would work > on Linux but didn't seem to be supported on Windows. >
Have you tried the post 2.6 Windows agent? I think Daniel Cid said it might work. I haven't seen any reports one way or the other though. (https://bitbucket.org/dcid/ossec-hids/changeset/e475f199a3b3) I'll have to add this to my list of things to look into. > The second thing for me is the difficulty of getting the logs viewable in > some web based method, but that has been done (almost to death) in the > ossec-wui thread. > > -- > James Pulver > Information Technology Area Supervisor > LEPP Computer Group > Cornell University > > > -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Michael Starks > Sent: Wednesday, October 26, 2011 7:01 AM > To: ossec-list > Subject: [ossec-list] 3WoO Day 4: What bugs you: problems, challenges and > room for improvement. > > List the most annoying bugs. What makes OSSEC difficult to use? What is > the biggest area for improvement? What are we missing? Any rules fp too > much? Now is the time to get it all out. > > -- > Michael Starks > [I] Immutable Security > http://www.immutablesecurity.com >
