On Fri, Feb 26, 2016 at 12:59 PM, Antonio Querubin <[email protected]> wrote: > On Fri, 26 Feb 2016, dan (ddp) wrote: > >> IIRC, there was some talk previously about adding a dns daemon that >> could be queried from inside the chroot. >> I can't remember exactly what I had found, but it related to libasr >> (https://github.com/OpenSMTPD/libasr). Maybe a dnsd of some sort built >> into opensmtpd? > > > Not sure how that addresses the OP's problem. If you accept that the > server's IP address will change then you still need to find a way to both > detect the change on the agent and then trigger some kind of restart/reload > on same. > > Unless you're willing to run the whole detection/restart show from a > separate monitoring system. This assumes the hosting provider provides some > automated means for restarting systems that can be scripted. > > Far simpler to use a secondary stable IP address for the server <-> agent > communication. The stable address does not need to be the NIC primary > address nor public. >
It probably doesn't help. I was just thinking that having a way to do the lookups without restarting the processes might make later queries easier. Detection is difficult, I guess you'd have to wait for it to fail and then do a lookup. Either way, sorry for the noise, I'm going back to lurking. > > > Antonio Querubin > e-mail: [email protected] > xmpp: [email protected] -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
