[ossec-list] Re: OSSEC Disconnected

Wed, 31 Jul 2013 04:50:54 -0700 

On my Mail Server: 

 

> 2013/07/15 13:14:56 ossec-execd: INFO: Started (pid: 27212).
>
> 2013/07/15 13:14:56 ossec-agentd(1410): INFO: Reading authentication keys 
>> file.
>
> 2013/07/15 13:14:56 ossec-agentd: INFO: Started (pid: 27216).
>
> 2013/07/15 13:14:56 ossec-agentd: INFO: Server IP Address: 172.16.1.18
>
> 2013/07/15 13:14:56 ossec-agentd: INFO: Trying to connect to server 
>> (172.16.1.18:1514).
>
> 2013/07/15 13:14:56 ossec-agentd: INFO: Using IPv4 for: 172.16.1.18 .
>
> 2013/07/15 13:14:57 ossec-agentd(4102): INFO: Connected to the server 
>> (172.16.1.18:1514).
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Started (pid: 27224).
>
> 2013/07/15 13:15:00 ossec-rootcheck: INFO: Started (pid: 27224).
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Monitoring directory: '/etc'.
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Monitoring directory: 
>> '/usr/bin'.
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Monitoring directory: 
>> '/usr/sbin'.
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Monitoring directory: '/bin'.
>
> 2013/07/15 13:15:00 ossec-syscheckd: INFO: Monitoring directory: '/sbin'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/messages'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/auth.log'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/syslog'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/mail.info'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/dpkg.log'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/apache2/error.log'.
>
> 2013/07/15 13:15:02 ossec-logcollector(1950): INFO: Analyzing file: 
>> '/var/log/apache2/access.log'.
>
> 2013/07/15 13:15:02 ossec-logcollector: INFO: Started (pid: 27220).
>
> 2013/07/15 13:15:34 ossec-execd: INFO: Active response command not 
>> present: '/var/ossec/active-response/bin/restart-ossec.cmd'. Not using it 
>> on this system.
>
> 2013/07/15 13:16:02 ossec-syscheckd: INFO: Starting syscheck scan 
>> (forwarding database).
>
> 2013/07/15 13:16:02 ossec-syscheckd: INFO: Starting syscheck database 
>> (pre-scan).
>
> 2013/07/15 13:24:06 ossec-agentd: INFO: Event count after '20000': 
>> 4014031->3336568 (83%)
>
> 2013/07/15 13:32:00 ossec-agentd: INFO: Event count after '20000': 
>> 3974399->3320512 (83%)
>
>
>

-- 

--- 
You received this message because you are subscribed to the Google Groups 
"ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.

Reply via email to