ossec-makelists

The ossec-makelists utility to compile cdb databases. ossec-makelists will scan ossec.conf for database files, check the mtime, and recompile all out of date databases.

See CDB List lookups from within Rules for more information.

ossec-makelists argument options

-h

Display the help message.

-V

Diplay the version and license information.

-d

Execute in debug mode.

-f

Force rebuild of all databases.

-u <user>

Run as <user>.

-g <group>

Run as <group>.

-c <config>

Run with configuration file of <config>.

Default /var/ossec/etc/ossec.conf

-D <dir>

Chroot to <dir>.

Default /var/ossec

ossec-makelists example usage

Example: Running ossec-makelists and an update is necessary

# /var/ossec/bin/ossec-makelists
 * File lists/blocked.txt.cdb need to be updated

Example: Running ossec-makelists when no update is necessary

# /var/ossec/bin/ossec-makelists
 * File lists/blocked.txt.cdb does not need to be compiled