X-Git-Url: http://ftp.carnet.hr/carnet-debian/scm?p=ossec-hids.git;a=blobdiff_plain;f=src%2Fos_dbd%2Fpostgresql.schema;h=30c481cd7ff85636e89bb5f10bb0b70a7d494d72;hp=73736a5698ad90249becc5c01ccd7f6e3f087e0c;hb=3f728675941dc69d4e544d3a880a56240a6e394a;hpb=927951d1c1ad45ba9e7325f07d996154a91c911b diff --git a/src/os_dbd/postgresql.schema b/src/os_dbd/postgresql.schema index 73736a5..30c481c 100644 --- a/src/os_dbd/postgresql.schema +++ b/src/os_dbd/postgresql.schema @@ -1,5 +1,3 @@ --- @(#) $Id: ./src/os_dbd/postgresql.schema, 2011/09/08 dcid Exp $ --- -- Copyright (C) 2009 Trend Micro Inc. -- All rights reserved. -- @@ -7,10 +5,6 @@ -- and/or modify it under the terms of the GNU General Public -- License (version 2) as published by the FSF - Free Software -- Foundation. --- --- License details at the LICENSE file included with OSSEC or --- online at: http://www.ossec.net/en/licensing.html - BEGIN; @@ -20,56 +14,56 @@ CREATE TABLE category cat_name VARCHAR(32) NOT NULL UNIQUE, PRIMARY KEY (cat_id) ); -CREATE INDEX cat_name ON category (cat_name); +CREATE INDEX cat_name ON category (cat_name); -CREATE TABLE signature - ( +CREATE TABLE signature + ( id SERIAL NOT NULL, rule_id INT8 NOT NULL UNIQUE, level INT4, description VARCHAR(255) NOT NULL, PRIMARY KEY (id) ); -CREATE INDEX level ON signature (level); -CREATE INDEX rule_id ON signature (rule_id); +CREATE INDEX signature_level ON signature (level); +CREATE INDEX signature_rule_id ON signature (rule_id); CREATE TABLE signature_category_mapping ( id SERIAL NOT NULL, rule_id INT8 NOT NULL, cat_id INT4 NOT NULL, - PRIMARY KEY (id, rule_id, cat_id) - ); + PRIMARY KEY (id, rule_id, cat_id) + ); -CREATE TABLE server +CREATE TABLE server ( id SERIAL NOT NULL, last_contact INT8 NOT NULL, version VARCHAR(32) NOT NULL, hostname VARCHAR(64) NOT NULL UNIQUE, - information VARCHAR(128) NOT NULL, - PRIMARY KEY (id) - ); + information TEXT NOT NULL, + PRIMARY KEY (id) + ); -CREATE TABLE agent +CREATE TABLE agent ( id SERIAL NOT NULL, - server_id INT8 NOT NULL, + server_id INT8 NOT NULL, last_contact INT8 NOT NULL, - ip_address INT8 NOT NULL, + ip_address VARCHAR(46) NOT NULL, version VARCHAR(32) NOT NULL, name VARCHAR(64) NOT NULL, - information VARCHAR(128) NOT NULL, - PRIMARY KEY (id, server_id) + information VARCHAR(128) NOT NULL, + PRIMARY KEY (id, server_id) ); CREATE TABLE location ( id SERIAL NOT NULL, - server_id INT8 NOT NULL, + server_id INT8 NOT NULL, name VARCHAR(128) NOT NULL, PRIMARY KEY (id, server_id) - ); + ); CREATE TABLE data ( @@ -79,23 +73,31 @@ CREATE TABLE data full_log TEXT NOT NULL, PRIMARY KEY (id, server_id) ); - -CREATE TABLE alert + +CREATE TABLE alert ( - id INT8 NOT NULL, + id bigserial NOT NULL, server_id INT4 NOT NULL, - rule_id INT8 NOT NULL, + rule_id INT8 NOT NULL, + level INT2, timestamp INT8 NOT NULL, location_id INT4 NOT NULL, - src_ip INT8, - dst_ip INT8, + src_ip VARCHAR(46), + dst_ip VARCHAR(46), src_port INT4, dst_port INT4, alertid TEXT DEFAULT NULL, + "user" TEXT, + full_log TEXT NOT NULL, + is_hidden INT2 NOT NULL DEFAULT '0', + tld VARCHAR(32) NOT NULL DEFAULT '', PRIMARY KEY (id, server_id) ); -CREATE INDEX time on alert(timestamp); -CREATE INDEX ruleid on alert(rule_id); -CREATE INDEX src_ip on alert(src_ip); - +CREATE INDEX alertid on alert(alertid); +CREATE INDEX alert_level on alert(level); +CREATE INDEX timestamp on alert(timestamp); +CREATE INDEX alert_rule_id on alert(rule_id); +CREATE INDEX src_ip on alert(src_ip); +CREATE INDEX tld on alert(tld); + COMMIT;