1

OSSEC 2.7 released

view story
linux-howto

http://www.linuxbsdos.com – OSSEC is Free Software, a GPL-licensed, host-based intrusion detection system (HIDS) that operates on a client-server model. Its development is sponsored by Trend Micro, a software security outfit based in Tokyo, Japan. OSSEC is cross-platform, with binary packages available for all Linux distributions, the BSDs, Windows, Solaris, Mac OS, VMWare ESX, AIX, and HP-UX. OSSEC 2.7 is the latest, stable version available for download. As with any software update, it comes with its share of new features and bugfixes. Some of the new features are: Support for hybrid mode during installation Client k (General)

sine's picture
Submitted by sine on 11/20/2012

Stories similar to OSSEC 2.7 released

OSSEC HIDS (with Web UI) 47 weeks 1 day ago

OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, MacOS, Solaris and Windows.

OSSEC 2.7 Now Has Hybrid Mode 25 weeks 3 days ago

OSSEC, an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response, is now at version 2.7.

It's been over a year from the previous major version of OSSEC, 2.6, which was released back in July 2011.

I want to install OSSEC HIDS in my Network Infrastructure for monitoring my network traffic & act based on that. I had gone through the OSSEC site regarding pre-requisites. I want to do it only for my Routers , Switches and Firewalls which can be done through "agentless" type . How that could be done?

I work with OSSEC HIDS In Ubuntu 11.10

http://www.ossec.net/wiki/Know_How:DatabaseOutput

When installing with mysql support, I get this error:

/tmp/ccuS4FYw.o: In function `mysql_osdb_connect': /home/bkhezry/Downloads/ossec-hids-2.6/src/os_dbd/db_op.c:164: undefined reference to `mysql_init' /home/bkhezry/Downloads/ossec-hids-2.6/src/os_dbd/db_op.c:178: undefined reference to `mysql_options' /h

I have installed Ossec on one server and agents on some other servers running on Redhat. The issue is that some servers are able to communicate and send the logs to servers and others are in INACTIVE state even though I have imported the security keys.

2013/02/23 15:34:34 ossec-agentd(4101): WARN: Waiting for server reply (not started).

Hello everyone,

I have recently installed ossec and its web-ui from the repositories. I have configured its parameters, have added www-data to the /var/ossec folder, changed its permissions to 755 (although not necessary) ... I did not touch php nor apache configuration.

Now whenever I try accessing the web gui I get this message:

Quote:

No integrity checking i

Ossec Installation Error 21 weeks 5 days ago

While installing Ossec Hids 2.6 on Redhat 5.5 installed on Virtual Machine, I got this error message.

Whats wrong here.

I have OSSEC HIDS installed and I'm using the web UI. However, I'm getting a lot of errors with it. Almost every line in the log says "Unknown problem somewhere in the system"...

Also, ever time I refresh the page, a line saying there's a PHP error is added to the log (so if I refresh 5 times, there's an extra 5 "PHP errors").

Is this normal for OSSEC?

Issue with OSSEC- IP block 29 weeks 5 days ago

Hello,

I am having an issue with OSSEC. Whenever a user script tries to change the memory limit, the ossec simply blocks its IP. On further research, i found that OSSEC blocks an IP if a rule of frequency greater than or equal to 6 is triggered. I need to find this rule and change its frequency. Any ideas?

Please help me ASAP!