Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:illuusio
ossec-hids
ossec-hids-location.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File ossec-hids-location.patch of Package ossec-hids
diff --git a/BUGS b/BUGS index 2eae0e31..cf555b86 100644 --- a/BUGS +++ b/BUGS @@ -7,7 +7,7 @@ Copyright (C) 2019 Trend Micro Inc. Please, make sure to include the following information: -OSSEC version number. --Content of /etc/ossec-init.conf +-Content of /etc/sysconfig/ossec-hids -Content of /var/ossec/etc/ossec.conf -Content of /var/ossec/logs/ossec.log -Operating system name/version (uname -a if Unix) diff --git a/INSTALL b/INSTALL index fdc0af3f..2b0876b9 100644 --- a/INSTALL +++ b/INSTALL @@ -33,12 +33,12 @@ Fast way steps: 1- Run the script ./install.sh. It will guide you through the installation process. -2- The script will create everything in /var/ossec and try to +2- The script will create everything in /var/lib/ossec and try to create the initialization script in your system (/etc/rc.local - or /etc/rc.d/init.d/ossec). If the init script is not created, + or /etc/init.d/ossec). If the init script is not created, make sure to follow the instructions from the install.sh to make OSSEC HIDS start during the boot. To start it by hand, just run - /var/ossec/bin/ossec-control start + /var/lib/ossec/bin/ossec-control start 3- If you are running it on multiple clients, make sure to install the server first. Use the manage_agents tool @@ -52,7 +52,7 @@ Fast way steps: By Hand Installation steps: -1- Create the necessary directories (by default /var/ossec). +1- Create the necessary directories (by default /var/lib/ossec). 2- Move the necessary files to the ossec directory. 3- Compile everything. 4- Move the binaries to the default directory. diff --git a/contrib/ossec-eps.sh b/contrib/ossec-eps.sh index 248d5a03..30491ee3 100755 --- a/contrib/ossec-eps.sh +++ b/contrib/ossec-eps.sh @@ -3,11 +3,11 @@ # Author Michael Starks ossec [at] michaelstarks [dot] com # License: GPLv3 -if [ ! -e /etc/ossec-init.conf ]; then +if [ ! -e /etc/sysconfig/ossec-hids ]; then echo OSSEC does not appear to be installed on this system. Goodbye. exit 1 else - grep -q agent /etc/ossec-init.conf && echo This script can only be run on the manager. Goodbye. && exit 1 + grep -q agent /etc/sysconfig/ossec-hids && echo This script can only be run on the manager. Goodbye. && exit 1 fi #Reset counters @@ -15,7 +15,7 @@ COUNT=0 EPSSUM=0 EPSAVG=0 #Source OSSEC Dir -. /etc/ossec-init.conf +. /etc/sysconfig/ossec-hids for i in $(grep 'Total events for day' ${DIRECTORY}/stats/totals/*/*/ossec-totals-*.log | cut -d: -f3); do COUNT=$((COUNT+1)) diff --git a/contrib/renumber_agent.sh b/contrib/renumber_agent.sh index 45e8a803..34bd2e4d 100755 --- a/contrib/renumber_agent.sh +++ b/contrib/renumber_agent.sh @@ -10,12 +10,12 @@ if [ $# -ne 2 ]; then exit 1 fi -if ! [ -e /etc/ossec-init.conf ]; then +if ! [ -e /etc/sysconfig/ossec-hids ]; then echo ossec-init.conf not found. Exiting... exit 1 fi -. /etc/ossec-init.conf +. /etc/sysconfig/ossec-hids KEYFILE=$DIRECTORY/etc/client.keys # Get the IP address from the key file @@ -26,7 +26,7 @@ if [ -z ${IPADDR} ]; then fi # stop OSSEC -/var/ossec/bin/ossec-control stop +/var/lib/ossec/bin/ossec-control stop # Update the key record sed -i $KEYFILE -e "s/${IPADDR}/${2}/" @@ -56,4 +56,4 @@ if [ -e "syscheck/.(${1}) ${IPADDR}->syscheck.cpt" ]; then fi # Restart OSSEC -/var/ossec/bin/ossec-control start +/var/lib/ossec/bin/ossec-control start diff --git a/contrib/util.sh b/contrib/util.sh index 2b1c22ad..460171c8 100755 --- a/contrib/util.sh +++ b/contrib/util.sh @@ -10,12 +10,12 @@ ACTION=$1 FILE=$2 FORMAT=$3 -if ! [ -e /etc/ossec-init.conf ]; then +if ! [ -e /etc/sysconfig/ossec-hids ]; then echo OSSEC Manager not found. Exiting... exit 1 fi -. /etc/ossec-init.conf +. /etc/sysconfig/ossec-hids if [ "X$FILE" = "X" ]; then echo "$0: addfile <filename> [<format>]" diff --git a/etc/ossec-agent.conf b/etc/ossec-agent.conf index ff8fa8a2..bd041dbc 100644 --- a/etc/ossec-agent.conf +++ b/etc/ossec-agent.conf @@ -27,8 +27,8 @@ </syscheck> <rootcheck> - <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> - <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <rootkit_files>/var/lib/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/lib/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> </rootcheck> <localfile> @@ -48,7 +48,7 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/secure</location> + <location>/var/log/firewall</location> </localfile> <localfile> @@ -58,16 +58,16 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/maillog</location> + <location>/var/log/mail</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/access_log</location> + <location>/var/log/apache2/access_log</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/error_log</location> + <location>/var/log/apache2/error_log</location> </localfile> </ossec_config> diff --git a/etc/ossec-local.conf b/etc/ossec-local.conf index ef89b754..c8fe1f38 100644 --- a/etc/ossec-local.conf +++ b/etc/ossec-local.conf @@ -101,8 +101,8 @@ </syscheck> <rootcheck> - <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> - <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <rootkit_files>/var/lib/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/lib/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> </rootcheck> <global> @@ -183,7 +183,7 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/secure</location> + <location>/var/log/firewall</location> </localfile> <localfile> @@ -193,16 +193,16 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/maillog</location> + <location>/var/log/mail</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/access_log</location> + <location>/var/log/apache2/access_log</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/error_log</location> + <location>/var/log/apache2/error_log</location> </localfile> </ossec_config> diff --git a/etc/ossec-server.conf b/etc/ossec-server.conf index 3a0857e8..7eeba0b8 100644 --- a/etc/ossec-server.conf +++ b/etc/ossec-server.conf @@ -93,15 +93,15 @@ <ignore>/etc/random-seed</ignore> <ignore>/etc/random.seed</ignore> <ignore>/etc/adjtime</ignore> - <ignore>/etc/httpd/logs</ignore> + <ignore>/etc/apache2</ignore> <!-- Check the file, but never compute the diff --> <nodiff>/etc/ssl/private.key</nodiff> </syscheck> <rootcheck> - <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> - <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <rootkit_files>/var/lib/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/lib/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> </rootcheck> <global> @@ -187,7 +187,7 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/secure</location> + <location>/var/log/firewall</location> </localfile> <localfile> @@ -197,17 +197,17 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/maillog</location> + <location>/var/log/mail</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/access_log</location> + <location>/var/log/apache2/access_log</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/error_log</location> + <location>/var/log/apache2/error_log</location> </localfile> <localfile> diff --git a/etc/ossec.conf b/etc/ossec.conf index 5c145576..c1fb93b2 100644 --- a/etc/ossec.conf +++ b/etc/ossec.conf @@ -51,15 +51,15 @@ <ignore>/etc/random-seed</ignore> <ignore>/etc/random.seed</ignore> <ignore>/etc/adjtime</ignore> - <ignore>/etc/httpd/logs</ignore> + <ignore>/etc/apache2</ignore> <!-- Check the file, but never compute the diff --> <nodiff>/etc/ssl/private.key</nodiff> </syscheck> <rootcheck> - <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> - <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <rootkit_files>/var/lib/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/lib/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> </rootcheck> <global> @@ -164,7 +164,7 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/secure</location> + <location>/var/log/firewall</location> </localfile> <localfile> @@ -174,16 +174,16 @@ <localfile> <log_format>syslog</log_format> - <location>/var/log/maillog</location> + <location>/var/log/mail</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/access_log</location> + <location>/var/log/apache2/access_log</location> </localfile> <localfile> <log_format>apache</log_format> - <location>/var/www/logs/error_log</location> + <location>/var/log/apache2/error_log</location> </localfile> </ossec_config> diff --git a/etc/templates/config/rootcheck.template b/etc/templates/config/rootcheck.template index 5645c7d3..ee2c4292 100755 --- a/etc/templates/config/rootcheck.template +++ b/etc/templates/config/rootcheck.template @@ -3,16 +3,16 @@ <frequency>36000</frequency> <!-- Local of the rootkit_files and rootkit_trojans files --> - <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> - <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> - <system_audit>/var/ossec/etc/shared/system_audit_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_rhel5_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_rhel6_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_rhel7_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_debian_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_rhel_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_sles11_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/cis_sles12_linux_rcl.txt</system_audit> - <system_audit>/var/ossec/etc/shared/system_audit_ssh.txt</system_audit> + <rootkit_files>/var/lib/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/lib/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <system_audit>/var/lib/ossec/etc/shared/system_audit_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_rhel5_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_rhel6_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_rhel7_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_debian_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_rhel_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_sles11_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/cis_sles12_linux_rcl.txt</system_audit> + <system_audit>/var/lib/ossec/etc/shared/system_audit_ssh.txt</system_audit> </rootcheck> diff --git a/install.sh b/install.sh index cecdec2c..6daef5ee 100755 --- a/install.sh +++ b/install.sh @@ -119,7 +119,7 @@ Install() cd ../ - # Generate the /etc/ossec-init.conf + # Generate the /etc/sysconfig/ossec-hids VERSION_FILE="./src/VERSION" VERSION=`cat ${VERSION_FILE}` chmod 700 ${OSSEC_INIT} > /dev/null 2>&1 diff --git a/src/LOCATION b/src/LOCATION index 88d8933d..1ddb42c4 100644 --- a/src/LOCATION +++ b/src/LOCATION @@ -1 +1 @@ -DIR="/var/ossec" +DIR="/var/lib/ossec" diff --git a/src/Makefile b/src/Makefile index 06a7094c..95caa21c 100644 --- a/src/Makefile +++ b/src/Makefile @@ -12,7 +12,7 @@ LUA_ENABLE?=no MAXAGENTS?=2048 REUSE_ID?=no # XXX Becareful NO EXTRA Spaces here -PREFIX?=/var/ossec +PREFIX?=/var/lib/ossec PG_CONFIG?=pg_config MY_CONFIG?=mysql_config PRELUDE_CONFIG?=libprelude-config @@ -555,7 +555,7 @@ help: failtarget @echo "General options: " @echo " make V=1 Display full compiler messages" @echo " make DEBUG=1 Build with symbols and without optimization" - @echo " make PREFIX=/path Install OSSEC to '/path'. Defaults to /var/ossec" + @echo " make PREFIX=/path Install OSSEC to '/path'. Defaults to /var/lib/ossec" @echo " make MAXAGENTS=NUMBER Set the number of maximum agents to NUMBER. Defaults to 2048" @echo " make REUSE_ID=yes Enables agent ID re-use" @echo diff --git a/src/agentlessd/README b/src/agentlessd/README index 463ef244..328eca1d 100644 --- a/src/agentlessd/README +++ b/src/agentlessd/README @@ -3,7 +3,7 @@ Agentless Daemon. It will use the connection type specified in the configuration to access a remote box and do integrity checking or log analysis. -The connection types are specified at /var/ossec/agentless . +The connection types are specified at /var/lib/ossec/agentless . Example of config: diff --git a/src/analysisd/compiled_rules/register_rule.sh b/src/analysisd/compiled_rules/register_rule.sh index a2591276..7ace91de 100755 --- a/src/analysisd/compiled_rules/register_rule.sh +++ b/src/analysisd/compiled_rules/register_rule.sh @@ -32,19 +32,19 @@ if [ "x$1" = "xlist" ]; then exit 0; elif [ "x$1" = "xsave" ]; then - ls -la /etc/ossec-init.conf > /dev/null 2>&1 + ls -la /etc/sysconfig/ossec-hids > /dev/null 2>&1 if [ ! $? = 0 ]; then echo "ERROR: Unable to save rules. You must have OSSEC installed to do so." exit 1; fi - cat /etc/ossec-init.conf > /dev/null 2>&1 + cat /etc/sysconfig/ossec-hids > /dev/null 2>&1 if [ ! $? = 0 ]; then echo "ERROR: Unable to save rules. You must be root to do so." exit 1; fi - . /etc/ossec-init.conf + . /etc/sysconfig/ossec-hids ls ${DIRECTORY}/compiled_rules > /dev/null 2>&1 if [ ! $? = 0 ]; then @@ -71,19 +71,19 @@ elif [ "x$1" = "xsave" ]; then elif [ "x$1" = "xrestore" ]; then - ls -la /etc/ossec-init.conf > /dev/null 2>&1 + ls -la /etc/sysconfig/ossec-hids > /dev/null 2>&1 if [ ! $? = 0 ]; then echo "ERROR: Unable to restore rules. You must have OSSEC installed to do so." exit 1; fi - cat /etc/ossec-init.conf > /dev/null 2>&1 + cat /etc/sysconfig/ossec-hids > /dev/null 2>&1 if [ ! $? = 0 ]; then echo "ERROR: Unable to restore rules. You must be root to do so." exit 1; fi - . /etc/ossec-init.conf + . /etc/sysconfig/ossec-hids ls ${DIRECTORY}/compiled_rules/function_list > /dev/null 2>&1 if [ ! $? = 0 ]; then diff --git a/src/headers/defs.h b/src/headers/defs.h index 422699c8..b3924ef7 100644 --- a/src/headers/defs.h +++ b/src/headers/defs.h @@ -156,7 +156,7 @@ http://www.ossec.net/main/license/\n" /* Syscheck restart */ #ifndef WIN32 -#define SYSCHECK_RESTART "/var/run/.syscheck_run" +#define SYSCHECK_RESTART "/run/.syscheck_run" #define SYSCHECK_RESTART_PATH DEFAULTDIR SYSCHECK_RESTART #else #define SYSCHECK_RESTART "syscheck/.syscheck_run" diff --git a/src/init/ossec-client.sh b/src/init/ossec-client.sh index 47caf80c..90d6745f 100755 --- a/src/init/ossec-client.sh +++ b/src/init/ossec-client.sh @@ -14,7 +14,7 @@ NAME="OSSEC HIDS" VERSION="v3.7.0" DAEMONS="ossec-logcollector ossec-syscheckd ossec-agentd ossec-execd" -[ -f /etc/ossec-init.conf ] && . /etc/ossec-init.conf +[ -f /etc/sysconfig/ossec-hids ] && . /etc/sysconfig/ossec-hids ## Locking for the start/stop LOCK="${DIR}/var/start-script-lock" diff --git a/src/init/ossec-hids-suse.init b/src/init/ossec-hids-suse.init index 7b628b51..b6aec9c9 100755 --- a/src/init/ossec-hids-suse.init +++ b/src/init/ossec-hids-suse.init @@ -44,12 +44,12 @@ rc_reset # Reading ossec init conf. -if [ -f /etc/ossec-init.conf ]; then - . /etc/ossec-init.conf +if [ -f /etc/sysconfig/ossec-hids ]; then + . /etc/sysconfig/ossec-hids fi if [ "X${DIRECTORY}" = "X" ]; then - DIRECTORY="/var/ossec" + DIRECTORY="/var/lib/ossec" fi diff --git a/src/init/ossec-server.sh b/src/init/ossec-server.sh index ddaae431..0529629d 100755 --- a/src/init/ossec-server.sh +++ b/src/init/ossec-server.sh @@ -21,7 +21,7 @@ fi NAME="OSSEC HIDS" VERSION="v3.7.0" -[ -f /etc/ossec-init.conf ] && . /etc/ossec-init.conf; +[ -f /etc/sysconfig/ossec-hids ] && . /etc/sysconfig/ossec-hids; DAEMONS="ossec-monitord ossec-logcollector ossec-remoted ossec-syscheckd ossec-analysisd ossec-maild ossec-execd ${DB_DAEMON} ${CSYSLOG_DAEMON} ${AGENTLESS_DAEMON}" diff --git a/src/init/shared.sh b/src/init/shared.sh index fb38b412..47ac905e 100755 --- a/src/init/shared.sh +++ b/src/init/shared.sh @@ -20,7 +20,7 @@ else ME=`whoami 2>/dev/null` fi -OSSEC_INIT="/etc/ossec-init.conf" +OSSEC_INIT="/etc/sysconfig/ossec-hids" HOST=`hostname` NAMESERVERS=`cat /etc/resolv.conf | grep "^nameserver" | cut -d " " -sf 2` NAMESERVERS2=`cat /etc/resolv.conf | grep "^nameserver" | cut -sf 2` diff --git a/src/systemd/agent/ossec-agentd.service b/src/systemd/agent/ossec-agentd.service index dd8bef8e..52ec6cea 100644 --- a/src/systemd/agent/ossec-agentd.service +++ b/src/systemd/agent/ossec-agentd.service @@ -3,8 +3,8 @@ Description=OSSEC Agent PartOf=ossec-agent.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-agentd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-agentd -f +ExecStartPre=${DIRECTORY}/bin/ossec-agentd -t +ExecStart=${DIRECTORY}/bin/ossec-agentd -f diff --git a/src/systemd/agent/ossec-execd.service b/src/systemd/agent/ossec-execd.service index d0389bd0..411739c6 100644 --- a/src/systemd/agent/ossec-execd.service +++ b/src/systemd/agent/ossec-execd.service @@ -3,8 +3,8 @@ Description=OSSEC Execd PartOf=ossec-agent.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-execd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-execd -f +ExecStartPre=${DIRECTORY}/bin/ossec-execd -t +ExecStart=${DIRECTORY}/bin/ossec-execd -f diff --git a/src/systemd/agent/ossec-logcollector.service b/src/systemd/agent/ossec-logcollector.service index fd669a80..8258cf8e 100644 --- a/src/systemd/agent/ossec-logcollector.service +++ b/src/systemd/agent/ossec-logcollector.service @@ -3,8 +3,8 @@ Description=OSSEC Logcollector PartOf=ossec-agent.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-logcollector -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-logcollector -f +ExecStartPre=${DIRECTORY}/bin/ossec-logcollector -t +ExecStart=${DIRECTORY}/bin/ossec-logcollector -f diff --git a/src/systemd/agent/ossec-syscheckd.service b/src/systemd/agent/ossec-syscheckd.service index 7519dfe3..ec9bd781 100644 --- a/src/systemd/agent/ossec-syscheckd.service +++ b/src/systemd/agent/ossec-syscheckd.service @@ -3,8 +3,8 @@ Description=OSSEC syscheckd PartOf=ossec-agent.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-syscheckd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-syscheckd -f +ExecStartPre=${DIRECTORY}/bin/ossec-syscheckd -t +ExecStart=${DIRECTORY}/bin/ossec-syscheckd -f diff --git a/src/systemd/server/ossec-agentless.service b/src/systemd/server/ossec-agentless.service index db6f193c..10f98584 100644 --- a/src/systemd/server/ossec-agentless.service +++ b/src/systemd/server/ossec-agentless.service @@ -3,8 +3,8 @@ Description=OSSEC Agentless PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-agentlessd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-agentlessd -f \ No newline at end of file +ExecStartPre=${DIRECTORY}/bin/ossec-agentlessd -t +ExecStart=${DIRECTORY}/bin/ossec-agentlessd -f diff --git a/src/systemd/server/ossec-analysisd.service b/src/systemd/server/ossec-analysisd.service index 9c9613d1..e39a8af4 100644 --- a/src/systemd/server/ossec-analysisd.service +++ b/src/systemd/server/ossec-analysisd.service @@ -3,8 +3,8 @@ Description=OSSEC Analysisd PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-analysisd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-analysisd -f +ExecStartPre=${DIRECTORY}/bin/ossec-analysisd -t +ExecStart=${DIRECTORY}/bin/ossec-analysisd -f diff --git a/src/systemd/server/ossec-csyslog.service b/src/systemd/server/ossec-csyslog.service index cadb4bdb..e0a3ec6e 100644 --- a/src/systemd/server/ossec-csyslog.service +++ b/src/systemd/server/ossec-csyslog.service @@ -3,8 +3,8 @@ Description=OSSEC Syslog client PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-csyslogd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-csyslogd -f \ No newline at end of file +ExecStartPre=${DIRECTORY}/bin/ossec-csyslogd -t +ExecStart=${DIRECTORY}/bin/ossec-csyslogd -f diff --git a/src/systemd/server/ossec-dbd.service b/src/systemd/server/ossec-dbd.service index e06b8ae1..ee05a3f5 100644 --- a/src/systemd/server/ossec-dbd.service +++ b/src/systemd/server/ossec-dbd.service @@ -3,8 +3,8 @@ Description=The OSSEC DBD PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-dbd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-dbd -f +ExecStartPre=${DIRECTORY}/bin/ossec-dbd -t +ExecStart=${DIRECTORY}/bin/ossec-dbd -f diff --git a/src/systemd/server/ossec-execd.service b/src/systemd/server/ossec-execd.service index b90b82f1..ffa4f5e2 100644 --- a/src/systemd/server/ossec-execd.service +++ b/src/systemd/server/ossec-execd.service @@ -3,8 +3,8 @@ Description=OSSEC Execd PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-execd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-execd -f +ExecStartPre=${DIRECTORY}/bin/ossec-execd -t +ExecStart=${DIRECTORY}/bin/ossec-execd -f diff --git a/src/systemd/server/ossec-logcollector.service b/src/systemd/server/ossec-logcollector.service index 2b12828c..23e2f7bd 100644 --- a/src/systemd/server/ossec-logcollector.service +++ b/src/systemd/server/ossec-logcollector.service @@ -3,8 +3,8 @@ Description=OSSEC Logcollector PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-logcollector -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-logcollector -f +ExecStartPre=${DIRECTORY}/bin/ossec-logcollector -t +ExecStart=${DIRECTORY}/bin/ossec-logcollector -f diff --git a/src/systemd/server/ossec-maild.service b/src/systemd/server/ossec-maild.service index 7932a83a..9e64c9f5 100644 --- a/src/systemd/server/ossec-maild.service +++ b/src/systemd/server/ossec-maild.service @@ -3,8 +3,8 @@ Description=OSSEC Maild PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-maild -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-maild -f +ExecStartPre=${DIRECTORY}/bin/ossec-maild -t +ExecStart=${DIRECTORY}/bin/ossec-maild -f diff --git a/src/systemd/server/ossec-monitord.service b/src/systemd/server/ossec-monitord.service index 6950bc4b..cc8638df 100644 --- a/src/systemd/server/ossec-monitord.service +++ b/src/systemd/server/ossec-monitord.service @@ -3,8 +3,8 @@ Description=OSSEC monitord PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-monitord -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-monitord -f +ExecStartPre=${DIRECTORY}/bin/ossec-monitord -t +ExecStart=${DIRECTORY}/bin/ossec-monitord -f diff --git a/src/systemd/server/ossec-remoted.service b/src/systemd/server/ossec-remoted.service index b252bfc5..2e50a2ed 100644 --- a/src/systemd/server/ossec-remoted.service +++ b/src/systemd/server/ossec-remoted.service @@ -4,8 +4,8 @@ PartOf=ossec-server.target [Service] Type=forking -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-remoted -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-remoted -f +ExecStartPre=${DIRECTORY}/bin/ossec-remoted -t +ExecStart=${DIRECTORY}/bin/ossec-remoted -f diff --git a/src/systemd/server/ossec-syscheckd.service b/src/systemd/server/ossec-syscheckd.service index 01440426..8468afc0 100644 --- a/src/systemd/server/ossec-syscheckd.service +++ b/src/systemd/server/ossec-syscheckd.service @@ -3,8 +3,8 @@ Description=OSSEC syscheckd PartOf=ossec-server.target [Service] -EnvironmentFile=/etc/ossec-init.conf -Environment=DIRECTORY=/var/ossec +EnvironmentFile=/etc/sysconfig/ossec-hids +Environment=DIRECTORY=/var/lib/ossec -ExecStartPre=/usr/bin/env ${DIRECTORY}/bin/ossec-syscheckd -t -ExecStart=/usr/bin/env ${DIRECTORY}/bin/ossec-syscheckd -f +ExecStartPre=${DIRECTORY}/bin/ossec-syscheckd -t +ExecStart=${DIRECTORY}/bin/ossec-syscheckd -f
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor