环境 CentOS7.6 ossec 3.2
大部分操作与ossec2.8.3类似
区别
1、安装方法:[root@warship src]# make TARGET=server DATABASE=mysql install
2、配置文件:[root@warship ~]# vim /var/ossec/etc/ossec.conf
remote项目
<remote>
<connection>secure</connection>
<allowed-ips>192.168.238.0/24</allowed-ips>
</remote>
最后添加
<ossec_config>
<database_output>
<hostname>127.0.0.1</hostname>
<username>ossec</username>
<password>ossec</password>
<database>ossec</database>
<type>mysql</type>
</database_output>
</ossec_config>
重启服务显示
[root@warship ossec-hids-3.2.0]# /var/ossec/bin/ossec-control restart
ossec-monitord not running ..
Killing ossec-logcollector ..
ossec-remoted not running ..
ossec-syscheckd not running ..
Killing ossec-analysisd ..
Killing ossec-ma