Questions tagged [ossec]
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. (from www.ossec.net)
1
question
7
votes
1
answer
7k
views
OSSEC integrity checksum alert - what caused the change?
Recently installed OSSEC on Linux machine to test.
Most results are expected, however yesterday I received emails with a number of notifications about Integrity checksum changing on files such as
/...