GRANT PRIVILEGES : (aLTERNATIve)
UPDATE mysql.db Set Select_priv = 'Y', Insert_priv = 'Y', Update_priv = 'Y', Create_priv = 'Y' Where User = 'username' and db='dbname.*';
If you configured ossec to send emails only for alerts with severity level 7 and higher then you will get those alerts.
Beside that you will also get emails for every alert that is triggered with rule that has “
tag specified regardless of rule level.
Add the following statement in your ossec.conf
This means that the global e-mail notification system will only send out one e-mail per hour, that means it collects all
alerts that would generate an e-mail until the end of the hour,
compiles them into one e-mail and then sends it.
Host-based intrusion detection system (HIDS)
“OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis,
file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.” (www.ossec.net)
HIDS (OSSEC) is an intrusion detection system that monitors and analyzes the internal computing system.
Never the less in some cases the “Network packets on its network interface”.
Yes, Just like Network-Based Intrusion detection system (NIDS).
Monitors the dynamic behaviour and state of the Machine (Computer System).
e.g. /etc/passwd was modified
suddenly and inexplicably started modifying the system password database.
Can be taken as Monitoring agent, or system’s security Policy.
What has ossec to say about ossec itself:
OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS).
It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking,
Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active response.
How to Install Ossec WUI
Download latest from
Enable Zend Extension In PHP
zend_extension = /home/ashishnepal/ioncube/ioncube_loader_lin_5.3.so
** Installing to a remote UNIX/LINUX DEDICATED or VPS server
1. Upload the contents of this package to /usr/local/ioncube
2. Copy the loader-wizard.php script to the root web directory of a
configured domain on the server
2. Launch the Loader Wizard script in your browser. For example: