On Tue, Apr 12, 2016 at 1:58 PM, <[email protected]> wrote: > Yeah, 2.8.3 from wazuh apt ubuntu repository. > Let's look on this commit in master and 2.8.3 tag: > https://github.com/ddpbsd/ossec-hids/commit/a7b69e873e070ea01e346d79c43b403920029801 > As as understand code, this type of log was added in file > src/analysisd/cleanevent.c > Master branch: code is there. On 106 line. > https://github.com/ddpbsd/ossec-hids/blob/master/src/analysisd/cleanevent.c#L106 > 2.8.3 tag: Code is not there're > https://github.com/ddpbsd/ossec-hids/blob/2.8.3/src/analysisd/cleanevent.c#L116 >
So somewhere between 2.8.3 and today code was added. Which makes sense, development is ongoing. > Unfortunatly, wazuh repo haven't deb-src packages, so i can't look to its > code. > I've also just tried atomic stable repo for centos 6.7 > Rules still not recognized. > > What repo are using to build ossec ? > The main one: https://github.com/ossec/ossec-hids > Btw: my question was "Is there any plan on new release" > If new release coming soon - i'll wait for it. > If not - i will try to build debian packages for my private repo. > Define "soon." I've asked the other devs what their opinion is on 2.9, but haven't heard back from most. The main choices (as I see them) are: * Prep and release the current 2.9 beta branch. * Rebranch 2.9 from the current MASTER, and hope that real life doesn't get in the way of prepping and releasing. * Skip 2.9, branch 3.0 from the current MASTER (possibly looking at semver in the process), and hoping that real life doesn't get in the way of this little hobby. Unfortunately this isn't a decision I feel comfortable making for everyone. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
