Monthly Archives: April 2008

v1.5 preview – New log rules/decoders

Version 1.5 comes with lot of additions to our log analysis (or LIDS – Log-based IDS) capabilities. Some of the new log formats we now support are: Solaris BSM auditing logs Asterisk logs Checkpoint and Smart Defense logs Debian package … Continue reading

Posted in ossec | 1 Comment

v1.5 preview – scan_time and scan_day on syscheck

This is a feature that have been requested for a while and now is finally available. In the past, the only way to specify when rootcheck/syscheck was supposed to run was based on the frequency (every 10 hours or every … Continue reading

Posted in ossec | 1 Comment

v1.5 preview – agent_control

Version 1.5 will come with a new utility binary, called agent_control (by default located at /var/ossec/bin/agent_control ). Basically, it allows you to query and get information from any agent you have configured on your server and it also allows you … Continue reading

Posted in ossec | 1 Comment

OSSEC on Hackontest

OSSEC is part of the Hackontest, a 24-hour programming marathon and we are looking for contributions… First, you can register to request features that we would develop during this 24-hour period. I already added a couple, but the more the … Continue reading

Posted in ossec | Leave a comment

OSSEC v1.5 beta1 available

Version 1.5 is very close and we need some help beta testing it. As I always say, trying out our beta releases is a simple and very effective way to help the project. How can you test it? We created … Continue reading

Posted in ossec | 1 Comment