Wazuh | Mailing List

Hi Henry, Sorry for my late reply. I hope you're well. Good question!! The wazuh-manager itself

Hi, It seems that issue has been resolved after updating Wazuh to latest version on all environments.

Hi Monesh, You can check this blog post from Wazuh on integrating The Hive with Wazuh. https://wazuh.

Hello Stuti, Thank you for your response. I understood your explanation. However, I found that the

Hi Narasimha, Are you getting the logs in the browser_history.log file? If not, the issue is related

Hi, Apologies for the late response. Yes, I can assist you with learning Wazuh. First, I recommend

Hi Everyone, I want to ask about using wazuh for OT Environments, does anyone use it or do you of

Hello, From what you shared, this confirms the merging is happening on the agent side, even in audit.

Any custom decoder for this On Thu, 11 Jun 2026, 17:21 bhavesh pandya, <bhaveshpandya1949india@

This helped, thanks! Now, I want to know whether it is possible to get email alerts in a format

Hi, Nazmur. Everything seems fine. But I have no idea why my Rule IDs aren't showing up anywhere.

Hello Farah, The ossec folder permissions contain ownership of root:wazuh with mod 750. Please see

Hello Pablo Thank you for your response, let me create a use case for sharing with you. Your response

Hello I got your private messages. Private messages wont show up here, you have to reply all before

Hello, Sure you can do that using a CDB list lookup instead of hardcoding directly in the regex. Set

Understood, thank you for your help! We will follow your recommendations. El miércoles, 10 de junio

Hi Shenal I'm glad the instructions were helpful. Please follow the steps at your convenience,

Hello Lucas Thank you for your response, I going to consider that information for the LB. I

Hello Thank you for the response i have applied that configuration and it works. On Friday, June 5,

Hello, Since Vision one is a SAAS application and your Wazuh instance is deployed in a private subnet

Hi @Farid You can implement an active‑passive DR setup for your Wazuh cluster, but it is not a single

Hi Om, Let me answer both questions together. Firstly, the Wazuh CTI platform gets vulnerability

Hi, Thank you for the follow-up and for sharing the finalized architecture. Regarding the Wazuh

Hi Chris, I can see from your indexer cluster health that you have "active_shards": 992 and

That's a fair point. In environments with tens of thousands of agents and hundreds of thousands

Hi Shady Mohamed, The issue shown is a field mapping conflict for data.srcip, data.dstport, data.

Hi Farid, You can check this link for different Linux distro repositories. https://documentation.

Hi all, Just following up on this thread in case anyone has experience with detecting AI tool usage

Hi Alara First, identify the rules creating the most alerts and check whether they are normal

Hi Om Nayaran, The 'Package Default Status' condition applies whenever a package is