User Tools
сервис_ossec
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
сервис_ossec [2024/05/15 09:22] val [Установка, запуск и подключение агента] |
сервис_ossec [2025/10/16 15:37] (current) val [Установка, запуск и подключение агента] |
||
|---|---|---|---|
| Line 19: | Line 19: | ||
| lan# apt install ossec-hids-server | lan# apt install ossec-hids-server | ||
| - | lan# /var/ossec/bin/agent_control -l | + | lan# cat /var/ossec/etc/ossec.conf |
| + | </code><code> | ||
| + | ... | ||
| + | <email_notification>yes</email_notification> | ||
| + | <email_to>root@corpX.un</email_to> | ||
| + | <smtp_server>server.corpX.un</smtp_server> | ||
| + | <email_from>ossecm@corpX.un</email_from> | ||
| + | </global> | ||
| ... | ... | ||
| </code> | </code> | ||
| Line 66: | Line 73: | ||
| server# /var/ossec/bin/ossec-control start | server# /var/ossec/bin/ossec-control start | ||
| + | |||
| + | server# tail -f /var/ossec/logs/ossec.log | ||
| </code> | </code> | ||
| Line 81: | Line 90: | ||
| <!-- Frequency that syscheck is executed (default every 2 hours) --> | <!-- Frequency that syscheck is executed (default every 2 hours) --> | ||
| <frequency>300</frequency> | <frequency>300</frequency> | ||
| - | <auto_ignore>no</auto_ignore> | + | <auto_ignore>no</auto_ignore> <!-- may not be needed --> |
| <directories check_all="yes">/usr/local/sbin</directories> | <directories check_all="yes">/usr/local/sbin</directories> | ||
| ... | ... | ||
сервис_ossec.1715754133.txt.gz · Last modified: 2024/05/15 09:22 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
