Update OSSEC Server

[Carlos Islas]

Hello Community,

Do you know if there is a procedure to update the OSSEC server from 2.9.3 to the latest version? I was looking on Internet for information but i cant find anything.

I appreciate your help.

Regards

[Kyriakos Stavridis]

Hello sparks,

From my experience, I suggest you follow the below steps to complete your upgrade.

- First backup your current ossec rules, decoders, active-responses scripts and ossec.conf (JUST IN CASE YOU LATER NEED THEM, perhaps you've written custom rules and decoders)

- Then download and extract the latest ossec server version

- Initiate the installation and OSSEC should detect that you already have a prior version installed. It will ask you if you want to upgrade it.

         You already have OSSEC installed. Do you want to update it? (y/n): y

- It will ask you if you want to update the rules as well. I suggest you do it.

         Do you want to update the rules? (y/n): y

- Installation and upgrade will begin.

- After the installation is finished, just check if every process is running and you're done.

    $ sudo /var/ossec/bin/ossec-control status

[Carlos Islas]

Hello Kyriakos.

Thank you for your recomendations :D i will try it.

Regards