Hi guys. I am a newbie with OSSEC, trying to use primarily for file integrity check.
So, the plan is: Ossec agent on server checks integrity, sends results to Ossec server, that send alerts of checksum change with syslog to my SIEM log server. But this one is listening in TCP port 514. According to docs, the syslog output sends UTP Can i change it? -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
