projects / ossec-hids.git / blob
? search:


ddcbe1b9f3793ddfe492ad11bd1420c099a580b6
[ossec-hids.git] /
1 Index: ossec-hids-2.8.2/etc/ossec-agent.conf
2 ===================================================================
3 --- ossec-hids-2.8.2.orig/etc/ossec-agent.conf  2015-06-10 15:38:32.000000000 +0000
4 +++ ossec-hids-2.8.2/etc/ossec-agent.conf       2015-07-12 18:54:10.859134760 +0000
5 @@ -25,40 +25,46 @@
6    <rootcheck>
7      <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files>
8      <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans>
9 +    <system_audit>/var/ossec/etc/shared/system_audit_rcl.txt</system_audit>
10    </rootcheck>
11  
12    <localfile>
13      <log_format>syslog</log_format>
14 -    <location>/var/log/messages</location>
15 +    <location>/var/log/syslog</location>
16    </localfile>
17  
18    <localfile>
19      <log_format>syslog</log_format>
20 -    <location>/var/log/authlog</location>
21 +    <location>/var/log/auth.log</location>
22    </localfile>
23  
24    <localfile>
25      <log_format>syslog</log_format>
26 -    <location>/var/log/secure</location>
27 +    <location>/var/log/dpkg.log</location>
28    </localfile>
29  
30    <localfile>
31      <log_format>syslog</log_format>
32 -    <location>/var/log/xferlog</location>
33 +    <location>/var/log/kern.log</location>
34    </localfile>
35  
36 +<!--
37 +
38    <localfile>
39      <log_format>syslog</log_format>
40 -    <location>/var/log/maillog</location>
41 +    <location>/var/log/mail.log</location>
42    </localfile>
43  
44    <localfile>
45      <log_format>apache</log_format>
46 -    <location>/var/www/logs/access_log</location>
47 +    <location>/var/log/apache2/access.log</location>
48    </localfile>
49  
50    <localfile>
51      <log_format>apache</log_format>
52 -    <location>/var/www/logs/error_log</location>
53 +    <location>/var/log/apache2/error.log</location>
54    </localfile>
55 +
56 +-->
57 +
58  </ossec_config>
ossec-hids