I also get these alerts periodically. Running 'ps' afterwards doesn't ever
find anything... rather frustrating.
Is there another way to figure out what app/code is triggering them? Would
be great if ossec could capture more about the process when it's
encountered.
{ "rule": { "level": 7,
Opened issue to discuss enhancements with dev team:
https://github.com/ossec/ossec-hids/issues/1242
--
---
You received this message because you are subscribed to the Google Groups
"ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to
Opened issue to discuss enhancements with dev
team: https://github.com/ossec/ossec-hids/issues/1242
On Tuesday, August 8, 2017 at 10:50:24 AM UTC-4, Clinton Parham wrote:
>
> I also get these alerts periodically. Running 'ps' afterwards doesn't ever
> find anything... rather fr