Hi everybody,
Recently im installed ossec 2.8.1, but i have a problem with a real-time
check,
i have in my server this:
*- Debian 7.3*
*- inotify-tools*
*process running*:
ossec-monitord is running...
ossec-logcollector is running...
ossec-syscheckd is running...
ossec-analysisd is running...
ossec-maild is running...
ossec-execd is running...
*in my ossec.conf put that:*
---
<alert_new_files>yes</alert_new_files>
<directories realtime="yes" report_changes="yes" check_all="yes">/var$
---
*But when i starting ossec in the ossec.log appear that:*
2014/09/10 23:13:50 ossec-syscheckd: INFO: Starting syscheck database
(pre-scan).
2014/09/10 23:19:27 ossec-syscheckd: INFO: Initializing real time file
monitoring (not started).
im looking information but nothing working, somebody have the same issue?
thanks a lot.
--
--
---
You received this message because you are subscribed to the Google Groups
"ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
