翻譯:
ossec有能力編譯和安裝,而不需要安裝。sh的互動。安裝指令碼可以從etc/preloaded-vars中收集問題的答案。conf配置檔案。
安裝程式要求的大多數問題都出現在配置檔案中,以及預設的答案。取消對每個變數的注釋將允許指令碼知道答案。預設安裝的任何更改都應該在配置檔案中進行。
如果usernostop="y"沒有設定,則安裝。sh可以提示確認。
示例preloaded-vars.conf:
# preloaded-vars.conf, daniel b. cid (dcid @ ossec.net).
## use this file to customize your installations.
# it will make the install.sh script pre-load some
# specific options to make it run automatically
# or with less questions.
# please note:
# when we use "n" or "y" in here, it should be changed
# to "n" or "y" in the language your are doing the
# installation. for example, in portuguese it would
# be "s" or "n".
# user_language defines to language to be used.
# it can be "en", "br", "tr", "it", "de" or "pl".
# in case of an invalid language, it will default
# to english "en"
#user_language="en" # for english
#user_language="br" # for portuguese
# if user_no_stop is set to anything, the confirmation
# messages are not going to be asked.
#user_no_stop="y"
# user_install_type defines the installation type to
# be used during install. it can only be "local",
# "agent" or "server".
#user_install_type="local"
#user_install_type="agent"
#user_install_type="server"
# user_dir defines the location to install ossec
#user_dir="/var/ossec"
# if user_delete_dir is set to "y", the directory
# to install ossec will be removed if present.
#user_delete_dir="y"
# if user_enable_active_response is set to "n",
# active response will be disabled.
#user_enable_active_response="y"
# if user_enable_syscheck is set to "y",
# syscheck will be enabled. set to "n" to
# disable it.
#user_enable_syscheck="y"
# if user_enable_rootcheck is set to "y",
# rootcheck will be enabled. set to "n" to
# disable it.
#user_enable_rootcheck="y"
# if user_update is set to anything, the update
# installation will be done.
#user_update="y"
# if user_update_rules is set to anything, the
# rules will also be updated.
#user_update_rules="y"
# if user_binaryinstall is set, the installation
# is not going to compile the code, but use the
# binaries from ./bin/
#user_binaryinstall="x"
### agent installation variables. ###
# specifies the ip address or hostname of the
# ossec server. only used on agent installations.
# choose only one, not both.
# user_agent_server_ip="1.2.3.4"
# user_agent_server_name
# user_agent_config_profile specifies the agent's config profile
# name. this is used to create agent.conf configuration profiles
# for this particular profile name. only used on agent installations.
# can be any string. e.g. linuxdbserver or windowsdomaincontroller
#user_agent_config_profile="generic"
### server/local installation variables. ###
# user_enable_email enables or disables email alerting.
#user_enable_email="y"
# user_email_address defines the destination e-mail of the alerts.
#user_email_address="[email protected]"
# user_email_smtp defines the smtp server to send the e-mails.
#user_email_smtp="test.ossec.net"
# user_enable_syslog enables or disables remote syslog.
#user_enable_syslog="y"
# user_enable_firewall_response enables or disables
# the firewall response.
#user_enable_firewall_response="y"
# enable pf firewall (openbsd and freebsd only)
#user_enable_pf="y"
# pf table to use (openbsd and freebsd only).
#user_pf_table="ossec_fwtable"
# user_white_list is a list of ips or networks
# that are going to be set to never be blocked.
#user_white_list="192.168.2.1 192.168.1.0/24"
#### exit ? ###
OSSEC文件 OSSEC安裝
翻譯 ossec安裝 安裝要求 ubuntu redhat debian 管理 安裝 windows 安裝 ossec只支援windows系統作為 並且需要ossec伺服器來執行。二進位制安裝 在第二個伺服器上編譯ossec 二進位制ossec包的安裝 伺服器虛擬裝置安裝 概述賬戶和密碼 將ovf轉...
OSSEC文件 開始使用OSSEC
翻譯 開始使用ossec ossec是乙個監視和控制系統的平台。它將hids 基於主機的入侵檢測 日誌監視和安全事件管理 sim 安全資訊和事件管理 siem 的所有方面整合在乙個簡單 強大且開源的解決方案中。優點 法規遵循需求 ossec幫助客戶滿足特定的遵從性要求,例如pci和hipaa。它允許...
OSSEC文件 OSSEC伺服器虛擬裝置安裝
翻譯 概述 ossec虛擬裝置是乙個在開放虛擬化格式 ovf 中的虛擬系統。它包含乙個ossec 2.7伺服器安裝和webui 0.8 beta 賬戶和密碼 系統上的所有帳戶的預設密碼是 0ssec 來自webui的使用者名稱是user,而phpmyadmin是root。將ovf轉換為vmware映...