Can I build the OSSEC server without the three GeoIP packages?

[Shawn Wiley]

Is there a way to the OSSEC server without the three GeoIP packages or at least force the packages to not be used? I'd like to install the least amount of additional packages to my web server as possible.

Thanks,

Shawn

[Shawn Wiley]

 What I was trying to say...

 

Is there a way to install the OSSEC server package without the three GeoIP packages? Also if I do not turn on the GeoIP functionality in the ossec.conf file will the packages just sit dormant? I want to install the least amount of additional packages to my web server as possible, my thoughts are why introduce any additional files which may be used to exploit the server..

 

Thanks,

Shawn 

[Victor Fernandez]

Hi Shawn,

you can compile OSSEC from sources without enabling GeoIP by following these steps:

• Download OSSEC source code: git clone https://github.com/ossec/ossec-hids.git
• Install GCC compiler and Make tool if you haven't them:
• sudo apt-get install gcc make [Debian/Ubuntu]
• sudo yum install gcc make [CentOS]
• sudo dnf install gcc make [Fedora]
• Compile OSSEC: make -C src TARGET=server
• Install OSSEC: sudo ./install.sh

This way, OSSEC won't include GeoIP support.

Hope it helps.

Best regards.

Victor.

[dan (ddp)]

You should be able to modify the packaging files and recompile to
suite your needs.


>
> Thanks,
> Shawn
>
> --
>
> ---
> You received this message because you are subscribed to the Google Groups
> "ossec-list" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to ossec-list+...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.