I've done something similar using Python to pull, convert to syslog, and
then send to OSSEC syslog daemon. We've also done some triggered DB
extracts to a txt file and then point the OSSEC agent at the txt file to
read it. Just need to concatenate all of the info from any multi-line
sources
Err. You must be joking? Try googling with 'CDB'.
Eero
18.3.2016 9.42 ip. "theresa mic-snare" kirjoitti:
> ehlo *,
>
> I have an important question about CDB lists, as I'm just researching for
> my thesis on OSSEC.
> yes, i've read the documentation on readthedocs, maybe
Hi,
I am running OSSEC version 2.8.3-3trusty on 100+ node on AWS EC2. Recently
i noticed that alerts are not being sent from ossec, not even single. It
was working fine couple of days earlier. While digging into this i observed
that it not working for an email group but working for individual