Hi Loick,
Sure I have already set it up, what I'm trying to achieve is verify the
agent source code of ossec because what I have been see the agent does't
send the hostname or the ip address of the host, what it sends is and IP
address preconfigured and the name of the agent preconfigured too, or at
least is not in the alert log, maybe because the log parsing through the
decoders are not parsing that data. I will work as hard as I can in my free
time to reach the goal.
Let me know what we need to start.
Thanks for your quick answer and your time guys, that is pretty valuable
for us.
Best regards,
On Mon, Mar 3, 2014 at 11:48 PM, Loick Pelet <lpe...@inverse.ca> wrote:
> Hi guys,
>
> I looked quicly into your website and documentations.
>
> I think I understand how OSSEC works, correct me if I am wrong but looks
> like
> a Nessus. I saw there is a way to centralize into a syslog, PacketFence
> can parse it.
> So we might be able to trigger violation regarding event from the syslog.
>
> Do you have a LAB already set? I would like to test it, but time and
> physical resources
> won't fit, but I would like to see how it work for real.
>
> regards.
> Loick
>
> On Mar 03-12:51PM, Jason Frisvold wrote:
> > Juan Camilo Valencia wrote:
> > > Hi Loick,
> > >
> > > Thanks for your quick reply, let me know what can I do to help achieve
> > > this feature, I am not the most versatile guy in perl but I can't
> learn,
> > > and for testing right now I'm setting up the environment with 4.1
> appliance.
> >
> > Ok, I'm intrigued .. What sort of integration are you talking about?
> > OSSEC is incredibly powerful, but I'm not sure how it fits together with
> > Packetfence, beyond the PF server being a client..
> >
> > > Thanks a lot,
> > >
> > > Best regards from Colombia,
> >
> > --
> > ---------------------------
> > Jason 'XenoPhage' Frisvold
> > xenoph...@godshell.com
> > ---------------------------
> >
> > "Any sufficiently advanced magic is indistinguishable from technology.\"
> > - Niven's Inverse of Clarke's Third Law
> >
> >
> ------------------------------------------------------------------------------
> > Subversion Kills Productivity. Get off Subversion & Make the Move to
> Perforce.
> > With Perforce, you get hassle-free workflows. Merge that actually works.
> > Faster operations. Version large binaries. Built-in WAN optimization
> and the
> > freedom to use Git, Perforce or both. Make the move to Perforce.
> >
> http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
> > _______________________________________________
> > PacketFence-devel mailing list
> > PacketFence-devel@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/packetfence-devel
>
> --
> lpe...@inverse.ca :: +1.514.447.4918 (x130) :: www.inverse.ca<
> http://www.inverse.ca/>
> Inverse inc. :: Leaders behind SOGo (www.sogo.nu<http://www.sogo.nu/>)
> and PacketFence
> +(www.packetfence.org<http://www.packetfence.org/>)
> gtalk or skype : lpelet.inverse
>
>
> ------------------------------------------------------------------------------
> Subversion Kills Productivity. Get off Subversion & Make the Move to
> Perforce.
> With Perforce, you get hassle-free workflows. Merge that actually works.
> Faster operations. Version large binaries. Built-in WAN optimization and
> the
> freedom to use Git, Perforce or both. Make the move to Perforce.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
> _______________________________________________
> PacketFence-devel mailing list
> PacketFence-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/packetfence-devel
>
--
JUAN CAMILO VALENCIA VARGAS
Ingeniero de Operaciones
SeguraTec S.A.S
Calle 11 # 43B-50 of 307
MedelllĂn Colombia
*"Choose a job you love, and you will never have to work a day in your
life"*
------------------------------------------------------------------------------
Subversion Kills Productivity. Get off Subversion & Make the Move to Perforce.
With Perforce, you get hassle-free workflows. Merge that actually works.
Faster operations. Version large binaries. Built-in WAN optimization and the
freedom to use Git, Perforce or both. Make the move to Perforce.
http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-devel mailing list
PacketFence-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-devel
