On 03/20/2014 06:57 PM, Vic Hargrave wrote:
Is the community in full agreement over dropping the rules from the
ossec-hids package? I for one don't think it is a good idea and would
create work to rip them out. Why not start out simple and add
complexity gradually? I'm also more in favor of having a base set of
rules so that OSSEC does something right out of the box.
OSSEC should be useful out of the box. It should ship with a default
ruleset like AV ships with DATs that are current at that time, then
updates as new rules are written or updated.
--
---
You received this message because you are subscribed to the Google Groups "ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
