Wazuh | Mailing List

Hello Tengku, It seems to me the issue is with SMTP server name <smtp_server>smtp.office365.com

Hi, You already have <alert_format>json</alert_format>, so we need to check if alerts are

Hi, Do you still need assitance? Thanks, On Friday, December 19, 2025 at 1:51:27 PM UTC+8 Karlo

Hello, I need assistance with a task where a message should be displayed when a USB device is

well stop using pfSense and use OPNsense, its far better and wazuh works out of the box on it On Fri,

Hello everyone, Please help me ignore the 404 status on the teler and also the web server log.

Hello again, FYI i opened new conversation of it Thank you Best, Alex On Tuesday, December 23, 2025

I check the Server management --> Rules section where it keeps loading and then gives this error:

Hello to all Wazuh users and administrators!!! Is it possible to specify a range of ports in the

Hi Hasitha, I followed the document and updated the required details; however, I'm still unable

Hello Riccardo, I am glad to hear that it all works now. For the new use case you have shared, you

Hello EugenX, It looks like this alert is being triggered due to the sdbinst.exe utility, which is

Hi Hasitha, Thank you for replying. I'm still unable to receive log in Wazuh. In my agent log,

Hello again. Not sure I follow this. The @timestamp field differs from the date of the log? This

Hello Narasimha, To follow up on this, I found the blog below, which you can also use as a reference

I have a CVE that is CVE-2025-9086 over a Ubuntu 22.04.5 LTS (Jammy Jellyfish). Wazuh 4.14.1 show

Hi! Those warnings usually mean the manager cant find or read the list files from inside the

Hi, the ruler is not working as expected. It is still capturing the event of the rule 60204 even if

Hello, When you try to save a rule from the Wazuh GUI, Wazuh triggers a restart of the manager demons

Hello, The issue I see here is the XML file drilldown you did with the syscheck directory block. The

hello i dont have vulnerabilities.log file on wazuh manager somehow cat: /var/ossec/logs/

It seems that everything is back in order. CVE's from december security update has been detected

Hi, First, I will explain how vulnerability alerts are generated in Wazuh. The Vulnerability

Hi Robby, I've attached the GitHub link here so you can review the latest updates from the

Hi G Mail, Please let me know the update on this, so we can check further. On Sunday, December 21,

I thought it would at least work if I left only one request enabled but no, it only works with

Hi, I followed the advice and excluded the official decoder 0455-pfsense_decoders.xml. I modified my

Hello Gerald, Your decoder will not be effective for all the logs you have shared. I also see a

Hi Glyn, Your permissions and database size are correct. However, we have recently found that given a

Thank you so much. I'll try it again and share the updated output. On Mon, Dec 22, 2025 at 9:10