Score:0

How to analyze/monitor OSSEC logs on Ubuntu

bf flag
Tom

I'm using OSSEC server to monitor machines with OSSEC agents, which monitor this login via SSH, file creation, etc.

I have configured OSSEC to send an email when it detects a problem, but this control mode is very bad for data control and search.

How can I analyze the logs like a dashboard, all log occurrences? Analyze by type of threat, date of occurrence, etc.

djdomi avatar
za flag
Requests for product, service, or learning material recommendations are off-topic because they attract low quality, opinionated and spam answers, and the answers become obsolete quickly. Instead, describe the business problem you are working on, the research you have done, and the steps taken so far to solve it.
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.