On 04/06/2014 12:14 PM, Joshua Garnett wrote:
All,
I'm looking for best practices for rolling out OSSEC to cloud based
environments such as AWS. One of the biggest problems I'd like to
address is developer environments that may be constantly going up and
down. Ideally I'd be able to put together a prebaked AMI that has an
OSSEC agent already installed and preconfigured to talk to an OSSEC server.
This shouldn't be a problem, but you may want to filter the "agent
disconnected" alerts. Also, if the systems will be wiped and reloaded
dynamically, but with the same agent name, you may need to disable rids
checking.
--
---
You received this message because you are subscribed to the Google Groups "ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
