mirrors/aports
1
0
Fork 0
mirror of https://gitlab.alpinelinux.org/alpine/aports.git synced 2025-08-26 17:01:34 +02:00
Code Issues Packages Projects Releases Wiki Activity
aports/testing/ossec-hids/02_ossec-server.conf.patch
Francesco Colista e7ab352a8e testing/ossec-hids: new aport
2016-11-18 09:56:44 +00:00

85 lines
2.3 KiB
Diff
Raw Blame History

diff --git a/etc/ossec-server.conf b/etc/ossec-server.conf
index 1a4998c..da49262 100755
--- a/etc/ossec-server.conf
+++ b/etc/ossec-server.conf
@@ -2,10 +2,10 @@
<ossec_config>
<global>
- <email_notification>yes</email_notification>
- <email_to>daniel.cid@xxx.com</email_to>
- <smtp_server>smtp.xxx.com.</smtp_server>
- <email_from>ossecm@ossec.xxx.com.</email_from>
+ <email_notification>no</email_notification>
+ <email_to>your_email_address@example.com</email_to>
+ <smtp_server>smtp.your_domain.com.</smtp_server>
+ <email_from>ossecm@ossec.your_domain.com.</email_from>
</global>
<rules>
@@ -94,10 +94,6 @@
<global>
<white_list>127.0.0.1</white_list>
- <white_list>192.168.2.1</white_list>
- <white_list>192.168.2.190</white_list>
- <white_list>192.168.2.32</white_list>
- <white_list>192.168.2.10</white_list>
</global>
<remote>
@@ -138,6 +134,7 @@
- level (severity) >= 6.
- The IP is going to be blocked for 600 seconds.
-->
+ <disabled>yes</disabled>
<command>host-deny</command>
<location>local</location>
<level>6</level>
@@ -149,6 +146,7 @@
- 600 seconds on the firewall (iptables,
- ipfilter, etc).
-->
+ <disabled>yes</disabled>
<command>firewall-drop</command>
<location>local</location>
<level>6</level>
@@ -164,31 +162,31 @@
<localfile>
<log_format>syslog</log_format>
- <location>/var/log/authlog</location>
+ <location>/var/log/auth.log</location>
</localfile>
<localfile>
<log_format>syslog</log_format>
- <location>/var/log/secure</location>
+ <location>/var/log/syslog</location>
</localfile>
<localfile>
<log_format>syslog</log_format>
- <location>/var/log/xferlog</location>
+ <location>/var/log/daemon.log</location>
</localfile>
<localfile>
<log_format>syslog</log_format>
- <location>/var/log/maillog</location>
+ <location>/var/log/mail.log</location>
</localfile>
<localfile>
<log_format>apache</log_format>
- <location>/var/www/logs/access_log</location>
+ <location>/var/log/apache2/access_log</location>
</localfile>
<localfile>
<log_format>apache</log_format>
- <location>/var/www/logs/error_log</location>
+ <location>/var/log/apache2/error_log</location>
</localfile>
</ossec_config>
Reference in New Issue View Git Blame Copy Permalink