On Wed, Mar 25, 2015 at 9:49 PM, tcoodsisso <[email protected]> wrote: > Hi Everyone, > > I am using OSSEC with splunk. I have installed Clam AV on Linux Servers. > > The OSSEC captures only signature update events and it doesnt capture > Malware detections . Please let me know what settings need to be made > >
Are these detections logged by clam av? Are they logged to a file monitored by OSSEC? If you use ossec-logtest, does OSSEC properly decode the log message? > > > Warm regards > Sammy > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/d/optout. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
