Lines 3-30
Link Here
|
3 |
%%PORTNAME%%/active-response/bin/host-deny.sh |
3 |
%%PORTNAME%%/active-response/bin/host-deny.sh |
4 |
%%PORTNAME%%/active-response/bin/ipfw_mac.sh |
4 |
%%PORTNAME%%/active-response/bin/ipfw_mac.sh |
5 |
%%PORTNAME%%/active-response/bin/ipfw.sh |
5 |
%%PORTNAME%%/active-response/bin/ipfw.sh |
|
|
6 |
%%PORTNAME%%/active-response/bin/ossec-tweeter.sh |
6 |
%%PORTNAME%%/active-response/bin/pf.sh |
7 |
%%PORTNAME%%/active-response/bin/pf.sh |
|
|
8 |
%%PORTNAME%%/active-response/bin/restart-ossec.sh |
7 |
%%PORTNAME%%/active-response/bin/route-null.sh |
9 |
%%PORTNAME%%/active-response/bin/route-null.sh |
|
|
10 |
%%PORTNAME%%/bin/agent_control |
8 |
%%PORTNAME%%/bin/clear_stats |
11 |
%%PORTNAME%%/bin/clear_stats |
9 |
%%PORTNAME%%/bin/list_agents |
12 |
%%PORTNAME%%/bin/list_agents |
10 |
%%PORTNAME%%/bin/manage_agents |
13 |
%%PORTNAME%%/bin/manage_agents |
11 |
%%PORTNAME%%/bin/ossec-agentd |
14 |
%%PORTNAME%%/bin/ossec-agentd |
|
|
15 |
%%PORTNAME%%/bin/ossec-agentlessd |
12 |
%%PORTNAME%%/bin/ossec-analysisd |
16 |
%%PORTNAME%%/bin/ossec-analysisd |
13 |
%%PORTNAME%%/bin/ossec-dbd |
|
|
14 |
%%PORTNAME%%/bin/ossec-control |
17 |
%%PORTNAME%%/bin/ossec-control |
|
|
18 |
%%PORTNAME%%/bin/ossec-csyslogd |
19 |
%%PORTNAME%%/bin/ossec-dbd |
15 |
%%PORTNAME%%/bin/ossec-execd |
20 |
%%PORTNAME%%/bin/ossec-execd |
16 |
%%PORTNAME%%/bin/ossec-logcollector |
21 |
%%PORTNAME%%/bin/ossec-logcollector |
|
|
22 |
%%PORTNAME%%/bin/ossec-logtest |
17 |
%%PORTNAME%%/bin/ossec-maild |
23 |
%%PORTNAME%%/bin/ossec-maild |
18 |
%%PORTNAME%%/bin/ossec-monitord |
24 |
%%PORTNAME%%/bin/ossec-monitord |
19 |
%%PORTNAME%%/bin/ossec-remoted |
25 |
%%PORTNAME%%/bin/ossec-remoted |
|
|
26 |
%%PORTNAME%%/bin/ossec-reportd |
20 |
%%PORTNAME%%/bin/ossec-syscheckd |
27 |
%%PORTNAME%%/bin/ossec-syscheckd |
21 |
%%PORTNAME%%/bin/syscheck_update |
|
|
22 |
%%PORTNAME%%/bin/ossec-csyslogd |
23 |
%%PORTNAME%%/bin/agent_control |
24 |
%%PORTNAME%%/bin/syscheck_control |
25 |
%%PORTNAME%%/bin/rootcheck_control |
28 |
%%PORTNAME%%/bin/rootcheck_control |
26 |
%%PORTNAME%%/bin/ossec-reportd |
29 |
%%PORTNAME%%/bin/syscheck_control |
27 |
%%PORTNAME%%/bin/ossec-agentlessd |
30 |
%%PORTNAME%%/bin/syscheck_update |
|
|
31 |
%%PORTNAME%%/bin/verify-agent-conf |
28 |
%%PORTNAME%%/etc/decoder.xml |
32 |
%%PORTNAME%%/etc/decoder.xml |
29 |
%%PORTNAME%%/etc/internal_options.conf |
33 |
%%PORTNAME%%/etc/internal_options.conf |
30 |
@unexec if cmp -s %D/%%PORTNAME%%/etc/ossec.conf %D/%%PORTNAME%%/etc/ossec.conf.sample; then rm -f %D/%%PORTNAME%%/etc/ossec.conf; fi |
34 |
@unexec if cmp -s %D/%%PORTNAME%%/etc/ossec.conf %D/%%PORTNAME%%/etc/ossec.conf.sample; then rm -f %D/%%PORTNAME%%/etc/ossec.conf; fi |
Lines 41-49
Link Here
|
41 |
%%PORTNAME%%/logs/ossec.log |
45 |
%%PORTNAME%%/logs/ossec.log |
42 |
%%PORTNAME%%/rules/apache_rules.xml |
46 |
%%PORTNAME%%/rules/apache_rules.xml |
43 |
%%PORTNAME%%/rules/arpwatch_rules.xml |
47 |
%%PORTNAME%%/rules/arpwatch_rules.xml |
|
|
48 |
%%PORTNAME%%/rules/asterisk_rules.xml |
44 |
%%PORTNAME%%/rules/attack_rules.xml |
49 |
%%PORTNAME%%/rules/attack_rules.xml |
|
|
50 |
%%PORTNAME%%/rules/cimserver_rules.xml |
45 |
%%PORTNAME%%/rules/cisco-ios_rules.xml |
51 |
%%PORTNAME%%/rules/cisco-ios_rules.xml |
46 |
%%PORTNAME%%/rules/courier_rules.xml |
52 |
%%PORTNAME%%/rules/courier_rules.xml |
|
|
53 |
%%PORTNAME%%/rules/dovecot_rules.xml |
47 |
%%PORTNAME%%/rules/firewall_rules.xml |
54 |
%%PORTNAME%%/rules/firewall_rules.xml |
48 |
%%PORTNAME%%/rules/ftpd_rules.xml |
55 |
%%PORTNAME%%/rules/ftpd_rules.xml |
49 |
%%PORTNAME%%/rules/hordeimp_rules.xml |
56 |
%%PORTNAME%%/rules/hordeimp_rules.xml |
Lines 51-64
Link Here
|
51 |
%%PORTNAME%%/rules/imapd_rules.xml |
58 |
%%PORTNAME%%/rules/imapd_rules.xml |
52 |
%%PORTNAME%%/rules/local_rules.xml |
59 |
%%PORTNAME%%/rules/local_rules.xml |
53 |
%%PORTNAME%%/rules/mailscanner_rules.xml |
60 |
%%PORTNAME%%/rules/mailscanner_rules.xml |
|
|
61 |
%%PORTNAME%%/rules/mcafee_av_rules.xml |
54 |
%%PORTNAME%%/rules/ms-exchange_rules.xml |
62 |
%%PORTNAME%%/rules/ms-exchange_rules.xml |
|
|
63 |
%%PORTNAME%%/rules/ms-se_rules.xml |
64 |
%%PORTNAME%%/rules/ms_dhcp_rules.xml |
55 |
%%PORTNAME%%/rules/ms_ftpd_rules.xml |
65 |
%%PORTNAME%%/rules/ms_ftpd_rules.xml |
56 |
%%PORTNAME%%/rules/msauth_rules.xml |
66 |
%%PORTNAME%%/rules/msauth_rules.xml |
57 |
%%PORTNAME%%/rules/mysql_rules.xml |
67 |
%%PORTNAME%%/rules/mysql_rules.xml |
58 |
%%PORTNAME%%/rules/named_rules.xml |
68 |
%%PORTNAME%%/rules/named_rules.xml |
59 |
%%PORTNAME%%/rules/netscreenfw_rules.xml |
69 |
%%PORTNAME%%/rules/netscreenfw_rules.xml |
|
|
70 |
%%PORTNAME%%/rules/nginx_rules.xml |
60 |
%%PORTNAME%%/rules/ossec_rules.xml |
71 |
%%PORTNAME%%/rules/ossec_rules.xml |
61 |
%%PORTNAME%%/rules/pam_rules.xml |
72 |
%%PORTNAME%%/rules/pam_rules.xml |
|
|
73 |
%%PORTNAME%%/rules/php_rules.xml |
62 |
%%PORTNAME%%/rules/pix_rules.xml |
74 |
%%PORTNAME%%/rules/pix_rules.xml |
63 |
%%PORTNAME%%/rules/policy_rules.xml |
75 |
%%PORTNAME%%/rules/policy_rules.xml |
64 |
%%PORTNAME%%/rules/postfix_rules.xml |
76 |
%%PORTNAME%%/rules/postfix_rules.xml |
Lines 66-74
Link Here
|
66 |
%%PORTNAME%%/rules/proftpd_rules.xml |
78 |
%%PORTNAME%%/rules/proftpd_rules.xml |
67 |
%%PORTNAME%%/rules/pure-ftpd_rules.xml |
79 |
%%PORTNAME%%/rules/pure-ftpd_rules.xml |
68 |
%%PORTNAME%%/rules/racoon_rules.xml |
80 |
%%PORTNAME%%/rules/racoon_rules.xml |
|
|
81 |
%%PORTNAME%%/rules/roundcube_rules.xml |
69 |
%%PORTNAME%%/rules/rules_config.xml |
82 |
%%PORTNAME%%/rules/rules_config.xml |
70 |
%%PORTNAME%%/rules/sendmail_rules.xml |
83 |
%%PORTNAME%%/rules/sendmail_rules.xml |
71 |
%%PORTNAME%%/rules/smbd_rules.xml |
84 |
%%PORTNAME%%/rules/smbd_rules.xml |
|
|
85 |
%%PORTNAME%%/rules/solaris_bsm_rules.xml |
72 |
%%PORTNAME%%/rules/sonicwall_rules.xml |
86 |
%%PORTNAME%%/rules/sonicwall_rules.xml |
73 |
%%PORTNAME%%/rules/spamd_rules.xml |
87 |
%%PORTNAME%%/rules/spamd_rules.xml |
74 |
%%PORTNAME%%/rules/squid_rules.xml |
88 |
%%PORTNAME%%/rules/squid_rules.xml |
Lines 77-126
Link Here
|
77 |
%%PORTNAME%%/rules/symantec-ws_rules.xml |
91 |
%%PORTNAME%%/rules/symantec-ws_rules.xml |
78 |
%%PORTNAME%%/rules/syslog_rules.xml |
92 |
%%PORTNAME%%/rules/syslog_rules.xml |
79 |
%%PORTNAME%%/rules/telnetd_rules.xml |
93 |
%%PORTNAME%%/rules/telnetd_rules.xml |
|
|
94 |
%%PORTNAME%%/rules/trend-osce_rules.xml |
95 |
%%PORTNAME%%/rules/vmpop3d_rules.xml |
96 |
%%PORTNAME%%/rules/vmware_rules.xml |
80 |
%%PORTNAME%%/rules/vpn_concentrator_rules.xml |
97 |
%%PORTNAME%%/rules/vpn_concentrator_rules.xml |
81 |
%%PORTNAME%%/rules/vpopmail_rules.xml |
98 |
%%PORTNAME%%/rules/vpopmail_rules.xml |
82 |
%%PORTNAME%%/rules/vsftpd_rules.xml |
99 |
%%PORTNAME%%/rules/vsftpd_rules.xml |
83 |
%%PORTNAME%%/rules/web_rules.xml |
100 |
%%PORTNAME%%/rules/web_rules.xml |
|
|
101 |
%%PORTNAME%%/rules/wordpress_rules.xml |
84 |
%%PORTNAME%%/rules/zeus_rules.xml |
102 |
%%PORTNAME%%/rules/zeus_rules.xml |
85 |
%%PORTNAME%%/rules/vmware_rules.xml |
|
|
86 |
%%PORTNAME%%/rules/vmpop3d_rules.xml |
87 |
%%PORTNAME%%/rules/solaris_bsm_rules.xml |
88 |
%%PORTNAME%%/rules/mcafee_av_rules.xml |
89 |
%%PORTNAME%%/rules/asterisk_rules.xml |
90 |
%%PORTNAME%%/agentless/main.exp |
103 |
%%PORTNAME%%/agentless/main.exp |
91 |
%%PORTNAME%%/agentless/sshlogin.exp |
|
|
92 |
%%PORTNAME%%/agentless/ssh_pixconfig_diff |
93 |
%%PORTNAME%%/agentless/ssh_nopass.exp |
94 |
%%PORTNAME%%/agentless/ssh_integrity_check_linux |
95 |
%%PORTNAME%%/agentless/ssh_integrity_check_bsd |
96 |
%%PORTNAME%%/agentless/ssh_generic_diff |
97 |
%%PORTNAME%%/agentless/ssh.exp |
98 |
%%PORTNAME%%/agentless/register_host.sh |
104 |
%%PORTNAME%%/agentless/register_host.sh |
|
|
105 |
%%PORTNAME%%/agentless/ssh.exp |
106 |
%%PORTNAME%%/agentless/ssh_asa-fwsmconfig_diff |
107 |
%%PORTNAME%%/agentless/ssh_foundry_diff |
108 |
%%PORTNAME%%/agentless/ssh_generic_diff |
109 |
%%PORTNAME%%/agentless/ssh_integrity_check_bsd |
110 |
%%PORTNAME%%/agentless/ssh_integrity_check_linux |
111 |
%%PORTNAME%%/agentless/ssh_nopass.exp |
112 |
%%PORTNAME%%/agentless/ssh_pixconfig_diff |
113 |
%%PORTNAME%%/agentless/sshlogin.exp |
99 |
%%PORTNAME%%/agentless/su.exp |
114 |
%%PORTNAME%%/agentless/su.exp |
100 |
@dirrmtry %%PORTNAME%%/agentless |
|
|
101 |
@dirrmtry %%PORTNAME%%/.ssh |
115 |
@dirrmtry %%PORTNAME%%/.ssh |
102 |
@dirrmtry %%PORTNAME%%/var/run |
116 |
@dirrmtry %%PORTNAME%%/active-response/bin |
103 |
@dirrmtry %%PORTNAME%%/var |
117 |
@dirrmtry %%PORTNAME%%/active-response |
104 |
@dirrmtry %%PORTNAME%%/tmp |
118 |
@dirrmtry %%PORTNAME%%/agentless |
105 |
@dirrmtry %%PORTNAME%%/stats |
119 |
@dirrmtry %%PORTNAME%%/bin |
106 |
@dirrmtry %%PORTNAME%%/rules |
120 |
@dirrmtry %%PORTNAME%%/etc/shared |
107 |
@dirrmtry %%PORTNAME%%/queue/syscheck |
121 |
@dirrmtry %%PORTNAME%%/etc |
108 |
@dirrmtry %%PORTNAME%%/queue/rootcheck |
122 |
@dirrmtry %%PORTNAME%%/logs/alerts |
109 |
@dirrmtry %%PORTNAME%%/queue/rids |
123 |
@dirrmtry %%PORTNAME%%/logs/archives |
110 |
@dirrmtry %%PORTNAME%%/queue/ossec |
124 |
@dirrmtry %%PORTNAME%%/logs/firewall |
111 |
@dirrmtry %%PORTNAME%%/queue/fts |
125 |
@dirrmtry %%PORTNAME%%/logs |
112 |
@dirrmtry %%PORTNAME%%/queue/alerts |
|
|
113 |
@dirrmtry %%PORTNAME%%/queue/agent-info |
126 |
@dirrmtry %%PORTNAME%%/queue/agent-info |
114 |
@dirrmtry %%PORTNAME%%/queue/diff |
|
|
115 |
@dirrmtry %%PORTNAME%%/queue/agentless |
127 |
@dirrmtry %%PORTNAME%%/queue/agentless |
|
|
128 |
@dirrmtry %%PORTNAME%%/queue/alerts |
129 |
@dirrmtry %%PORTNAME%%/queue/diff |
130 |
@dirrmtry %%PORTNAME%%/queue/fts |
131 |
@dirrmtry %%PORTNAME%%/queue/ossec |
132 |
@dirrmtry %%PORTNAME%%/queue/rids |
133 |
@dirrmtry %%PORTNAME%%/queue/rootcheck |
134 |
@dirrmtry %%PORTNAME%%/queue/syscheck |
116 |
@dirrmtry %%PORTNAME%%/queue |
135 |
@dirrmtry %%PORTNAME%%/queue |
117 |
@dirrmtry %%PORTNAME%%/logs/firewall |
136 |
@dirrmtry %%PORTNAME%%/rules |
118 |
@dirrmtry %%PORTNAME%%/logs/archives |
137 |
@dirrmtry %%PORTNAME%%/stats/hourly-average |
119 |
@dirrmtry %%PORTNAME%%/logs/alerts |
138 |
@dirrmtry %%PORTNAME%%/stats/totals |
120 |
@dirrmtry %%PORTNAME%%/logs |
139 |
@dirrmtry %%PORTNAME%%/stats/weekly-average |
121 |
@dirrmtry %%PORTNAME%%/etc/shared |
140 |
@dirrmtry %%PORTNAME%%/stats |
122 |
@dirrmtry %%PORTNAME%%/etc |
141 |
@dirrmtry %%PORTNAME%%/tmp |
123 |
@dirrmtry %%PORTNAME%%/bin |
142 |
@dirrmtry %%PORTNAME%%/var/run |
124 |
@dirrmtry %%PORTNAME%%/active-response/bin |
143 |
@dirrmtry %%PORTNAME%%/var |
125 |
@dirrmtry %%PORTNAME%%/active-response |
|
|
126 |
@dirrmtry %%PORTNAME%% |
144 |
@dirrmtry %%PORTNAME%% |