On Thu, Sep 15, 2016 at 2:38 PM, Kumar G <
mkg...@gmail.com> wrote:
> Hi team,
>
> We are in the process of getting the sudo rules worked out for OSSEC
> environment. However there came up a question like if we can have the ossec
> user have read/write access on them.(eg: /var/ossec/rules, /var/ossec/etc -
> ossec accountshould have the write permission). Is it advisable to change
> the chmod permissions of files / folders under /var/ossec directory?
>
I prefer to not let the ossec user have write permissions to anything
it doesn't need to write to.
There's no reason for the ossec user to write to the rules.
> Any one has the list of sudo commands required on the OSSEC server / agent
> t?
>
What problem are you trying to solve exactly?
>
> Thanks
> Kumar
>
> --
>
> ---
> You received this message because you are subscribed to the Google Groups
> "ossec-list" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to
ossec-list+...@googlegroups.com.
> For more options, visit
https://groups.google.com/d/optout.