Hello, I would like to know the features we can use with enabling realtime=yes for each monitored directory. Is that just for file deletion alerts?
I think each agent machines should also have inotify-tools and inotify-tools-devel installed. I did some tests with real time but did not get alerts for file deletion. I did wait for a syscheck scan to run on the agent system. Is there a way to check if inotify-tools are working fine? Thanks. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
