> >
>
> I'll have to test the alert new files functionality out. It worked
> last time I tried it, but I haven't tried it recently.
> Which version of OSSEC are you using?
>
I am using ossec version : 3.0.0
>
> > --
> >
> > ---
> > You received this message because you are subscribed
On Fri, Oct 11, 2019 at 8:56 AM Prashanthi Soundarajan
wrote:
>
>
>
> On Friday, October 11, 2019 at 6:23:37 PM UTC+5:30, Prashanthi Soundarajan
> wrote:
>>
>>
>>
>>>
>>> Do the new files you create show up in your syscheck database file?
>>> (/var/ossec/queue/syscheck/syscheck.db for the OSSEC
On Friday, October 11, 2019 at 6:23:37 PM UTC+5:30, Prashanthi Soundarajan
wrote:
>
>
>
>
>> Do the new files you create show up in your syscheck database file?
>> (/var/ossec/queue/syscheck/syscheck.db for the OSSEC server)
>>
>
>
> I am not able to see database file. I can see a file name
> Do the new files you create show up in your syscheck database file?
> (/var/ossec/queue/syscheck/syscheck.db for the OSSEC server)
>
I am not able to see database file. I can see a file name
/var/ossec/queue/syscheck/syscheck
Is that what you are referring ? if yes than I am not able
On Fri, Oct 11, 2019 at 7:53 AM Prashanthi Soundarajan
wrote:
>
>
>
>>
>> All the samples are from the alerts you say you are getting emails
>> for. The important alerts to look for are the ones you're not getting
>> emails for.
>> Assuming those exist in the alerts.log file, check your smtp
> All the samples are from the alerts you say you are getting emails
> for. The important alerts to look for are the ones you're not getting
> emails for.
> Assuming those exist in the alerts.log file, check your smtp server's
> mail logs. Perhaps it's discarding the messages or they aren't
On Thu, Oct 10, 2019 at 9:24 AM Prashanthi Soundarajan
wrote:
>
>
> Yes, I able see the alerts which I mentioned (" Level 2 - Unknown problem
> somewhere in the system","Level 8 - Log file size reduced","Level 7 -
> Integrity checksum changed."," Level 13 - Non standard syslog message") in
>
Yes, I able see the alerts which I mentioned (" Level 2 - Unknown problem
somewhere in the system","Level 8 - Log file size reduced","Level 7 -
Integrity checksum changed."," Level 13 - Non standard syslog message") in
/var/ossec/logs/alerts/alerts.log
Sample:_
** Alert
On Thu, Oct 10, 2019 at 8:54 AM Prashanthi Soundarajan
wrote:
>
> Yes, I am getting email alerts like " Level 2 - Unknown problem somewhere in
> the system","
> Level 8 - Log file size reduced","Level 7 - Integrity checksum changed.","
> Level 13 - Non standard syslog message"
>
> I am not
Yes, I am getting email alerts like " Level 2 - Unknown problem somewhere
in the system","
Level 8 - Log file size reduced","Level 7 - Integrity checksum changed.","
Level 13 - Non standard syslog message"
I am not getting alerts for new file creation/Deletion/Modification
On Thursday, October
On Thu, Oct 10, 2019 at 7:02 AM Prashanthi Soundarajan
wrote:
>
>
>
> On Thursday, October 10, 2019 at 3:57:41 PM UTC+5:30, Prashanthi Soundarajan
> wrote:
>>
>> ossec.conf
>> ___
>>
>>
>>
>> yes
>> my email
>> 127.0.0.1
>> ossecm@fcappiee
>> yes
>>
>>
>>
>>
11 matches
Mail list logo
