Hello, I I have set ossec to output the data to MySQL but I have no data in it.. After doing a few digging on the server, I realized that I had the following in my mysql-slow.log file: Tcp port: 2596 Unix socket: /tmp/mysql.sock Time Id Command Argument # Time: 141219 15:33:03 # User@Host: ossecadmin[ossecadmin] @ [192.168.1.185] Id: 1 # Query_time: 0.029569 Lock_time: 0.019388 Rows_sent: 1 Rows_examined: 2134 use ossec; SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '1' AND rule_id = '1'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000802 Lock_time: 0.000040 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '2' AND rule_id = '2'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000795 Lock_time: 0.000039 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '3' AND rule_id = '3'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000806 Lock_time: 0.000040 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '4' AND rule_id = '4'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000790 Lock_time: 0.000030 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '5' AND rule_id = '5'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000814 Lock_time: 0.000040 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '6' AND rule_id = '6'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000802 Lock_time: 0.000031 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '7' AND rule_id = '7'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000796 Lock_time: 0.000031 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '8' AND rule_id = '5500'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000817 Lock_time: 0.000030 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '1' AND rule_id = '5500'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000799 Lock_time: 0.000030 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '8' AND rule_id = '5501'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000828 Lock_time: 0.000040 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '1' AND rule_id = '5501'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000800 Lock_time: 0.000030 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183; SELECT id FROM signature_category_mapping WHERE cat_id = '9' AND rule_id = '5501'; # User@Host: ossec[ossec] @ [192.168.1.163] Id: 1 # Query_time: 0.000798 Lock_time: 0.000031 Rows_sent: 1 Rows_examined: 2134 SET timestamp=1419003183;
Could anyone please help me to get this queries working -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
