[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[ossec-list] Re: Re-installing OSSEC as an agent
- To: ossec-list@xxxxxxxxxxxxxxxx
- Subject: [ossec-list] Re: Re-installing OSSEC as an agent
- From: "Daniel Cid" <daniel.cid@xxxxxxxxx>
- Date: Thu, 11 Oct 2007 20:03:02 -0300
- Authentication-results: mx.google.com; spf=pass (google.com: domain of daniel.cid@xxxxxxxxx designates 64.233.184.237 as permitted sender) smtp.mail=daniel.cid@xxxxxxxxx; dkim=pass (test mode) header.i=@xxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=i1Zvoo6QS2DEy9X71w/NPcHVpKoe3uKe0ZwxpgR7kvI=; b=emwX6FZHuzSP6Zy8QLp9hGLfMmm9wIqlV9jndDf8++/vG409yxtROqGyNVn20gcRrlTwGtpDXsRwMO9ZkOFwJd9id7l7ERCEl+He4cMmA/wBAfdR0vNdidDWOs5ubDm6p2PxK2lpM308/dmhojzS1SETK92ikCtSX4msVjrTIOA=
Hi Andy,
The easiest way is to uninstall OSSEC and reinstall it as an agent. To
uninstall, just do:
# rm -rf /var/ossec/
# rm /etc/ossec-init.conf
And re-run the install.sh...
Hope it helps.
--
Daniel B. Cid
dcid ( at ) ossec.net
On 10/8/07, tswmmeejsdad@xxxxxxxxx <tswmmeejsdad@xxxxxxxxx> wrote:
>
> Hi There,
>
> We've installed OSSEC as a "local" install on every server so far and
> did not use the server/agent model. This might have been a bad move
> because we have all our servers running a "local" install of OSSEC and
> we want to now have a central management system so that white lists
> can easily be implemented on the server and rolled out to all agents.
>
> Just need some details about how to make this work. Do we just re-run
> install.sh and choose the "agent" installation or do we have to
> totally uninstall OSSEC - if we have to uninstall OSSEC, how do we do
> this?
>
> Thanks.
>
> Andy
>
>
OSSEC home |
Main Index |
Thread Index
OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.