{"id":92,"date":"2009-08-26T21:29:00","date_gmt":"2009-08-26T21:29:00","guid":{"rendered":"https:\/\/defragged.org\/ossec\/?p=92"},"modified":"2020-07-02T21:30:30","modified_gmt":"2020-07-02T21:30:30","slug":"ossec-v2-2-beta1-available","status":"publish","type":"post","link":"https:\/\/defragged.org\/ossec\/2009\/08\/ossec-v2-2-beta1-available\/","title":{"rendered":"OSSEC v2.2 beta1 available"},"content":{"rendered":"\n

OSSEC v2.2 will be released soon and we need help beta testing it. The code is pretty stable already and have been through a series of internal testings.<\/p>\n\n\n\n

So, if you have a spare system or can install it on your production network, we would love to hear some feedback (just follow the instructions at our Beta testing wiki page<\/a>.<\/p>\n\n\n\n

New features\/Bug fixes<\/h3>\n\n\n\n
  1. Added tool to proper validate if the system is little or big endian.<\/li>
  2. Added \u201cignore\u201d option to rootcheck (specially to deal with large NFS shares and avoid scaning them)<\/li>
  3. Added option to log every rootcheck event (not only the FTS ones).<\/li>
  4. Fixed configuration error when no parameter was given to the agent.conf file<\/li>
  5. Added rules to ignore constant CRON login\/logout alerts (happening on Debian\/Ubuntu)<\/li>
  6. Changed the way we handle Windows sockets to avoid timeouts on shared files<\/li>
  7. Added support for roundcube logs. (Thanks to Michael Starks for the work).<\/li>
  8. Added support for Netscreen alert (IDS) events.<\/li>
  9. Added command line options to the manage_agents tool.<\/li>
  10. Fixed issue of duplicated IP addresses on syscheck_control. (Patch by ddpbsd at gmail.com).<\/li>
  11. Fixed the way we handle \/0 netmasks on all the control tools.<\/li>
  12. Added custom fine-grained entries to syscheck on Windows. The goal is to reduce the amount of directories check and increase usefulness.<\/li>
  13. Added option to disable message id checks. Useful when you plan to reuse keys.<\/li>
  14. Added support for WordPress logs. They come from the wpsyslog2 plugin that we modified to log everything to syslog (from new posts, new comments, logins, logouts, etc).<\/li>
  15. Added support for escaping \u201c<\u201d on the XML and regex libraries.<\/li>
  16. Fixed bug on syscheck_control where the zero\/ignore options were not working on some systems. (Thanks to Michael Starks for the report).<\/li>
  17. Added support for Trend OSCE (Office scan) log files<\/li>
  18. Fixed installation script on AIX to only use \/bin\/false if it is installed.<\/li><\/ol>\n\n\n\n

    Download<\/h3>\n\n\n\n