On Fri, May 29, 2015 at 8:41 AM, <[email protected]> wrote: > Hi > > I installed OSSEC in a Ubuntu 14.04 box but realtime monitoring is not > working for me. > > "In the logs i get this: 2015/05/29 14:00:40 ossec-syscheckd: INFO: > Initializing real time file monitoring (not started)." and it's like this > for the last 40 minutes. > > If i modify, add or delete a file i don't get any notification. >
Has a complete syscheck scan completed? Realtime won't work until there's a baseline database. Also make sure the libnotify packages were installed before compiling OSSEC. > I followed this tutorial > https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-ossec-security-notifications-on-ubuntu-14-04 > in case it helps. > > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/d/optout. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
