3 # Copyright (C) 2009 Trend Micro Inc.
6 # This program is a free software; you can redistribute it
7 # and/or modify it under the terms of the GNU General Public
8 # License (version 2) as published by the FSF - Free Software
11 # License details at the LICENSE file included with OSSEC or
12 # online at: http://www.ossec.net/en/licensing.html
17 cat_id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
18 cat_name VARCHAR(32) NOT NULL UNIQUE,
23 CREATE TABLE signature
25 id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
26 rule_id MEDIUMINT UNSIGNED NOT NULL UNIQUE,
27 level TINYINT UNSIGNED,
28 description VARCHAR(255) NOT NULL,
34 CREATE TABLE signature_category_mapping
36 id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
37 rule_id MEDIUMINT UNSIGNED NOT NULL,
38 cat_id SMALLINT UNSIGNED NOT NULL,
39 PRIMARY KEY (id, rule_id, cat_id)
44 id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
45 last_contact INT UNSIGNED NOT NULL,
46 version VARCHAR(32) NOT NULL,
47 hostname VARCHAR(64) NOT NULL UNIQUE,
48 information VARCHAR(128) NOT NULL,
54 id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
55 server_id SMALLINT UNSIGNED NOT NULL,
56 last_contact INT UNSIGNED NOT NULL,
57 ip_address INT UNSIGNED NOT NULL,
58 version VARCHAR(32) NOT NULL,
59 name VARCHAR(64) NOT NULL,
60 information VARCHAR(128) NOT NULL,
61 PRIMARY KEY (id, server_id)
66 id SMALLINT UNSIGNED NOT NULL AUTO_INCREMENT,
67 server_id SMALLINT UNSIGNED NOT NULL,
68 name VARCHAR(128) NOT NULL,
69 PRIMARY KEY (id, server_id)
74 id INT UNSIGNED NOT NULL,
75 server_id SMALLINT UNSIGNED NOT NULL,
77 full_log TEXT NOT NULL,
78 timestamp TIMESTAMP NOT NULL,
79 PRIMARY KEY (id, server_id),
80 INDEX time (timestamp)
86 id INT UNSIGNED NOT NULL,
87 server_id SMALLINT UNSIGNED NOT NULL,
88 rule_id MEDIUMINT UNSIGNED NOT NULL,
89 timestamp INT UNSIGNED NOT NULL,
90 location_id SMALLINT UNSIGNED NOT NULL,
93 src_port SMALLINT UNSIGNED,
94 dst_port SMALLINT UNSIGNED,
95 PRIMARY KEY (id, server_id),
96 INDEX time (timestamp),