Groups
Conversations
All groups and messages
Send feedback to Google
Help
Training
Sign in
Groups
Wazuh | Mailing List
Conversations
About
Groups keyboard shortcuts have been updated
Dismiss
See shortcuts
Wazuh | Mailing List
Contact owners and managers
1–30 of 13920
Welcome to Wazuh mailing list. Our team will be happy to answer and help with all your questions.
We look forward to your feedback and contributions.
Mark all as read
Report group
0 selected
Cecil Jackson
,
Javier Bejar
6
11:32 AM
How to harden API TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
It has a bad cipher, but the API fails when it is down. But when I go back to without the setting, it
unread,
How to harden API TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
It has a bad cipher, but the API fails when it is down. But when I go back to without the setting, it
11:32 AM
thaiy valentine
2:19 AM
Cluster status Red
Hi team Please can you guide me how to delete or repair this issue output from: GET _cluster/
unread,
Cluster status Red
Hi team Please can you guide me how to delete or repair this issue output from: GET _cluster/
2:19 AM
thaiy valentine
Jan 17
Index Management can not create policy
Hi team Please help me to check my State management polices are miss as below, i checked the cluster
unread,
Index Management can not create policy
Hi team Please help me to check my State management polices are miss as below, i checked the cluster
Jan 17
German DiCasas
,
Dario Menten
2
Jan 17
vulnerability-scanner feed ossec.log
Hello German, It seems there are some issues with the feeds, please try this: Stop the manager
unread,
vulnerability-scanner feed ossec.log
Hello German, It seems there are some issues with the feeds, please try this: Stop the manager
Jan 17
João Seguro @ Chipcooler
,
Roman Luna
4
Jan 17
Wazuh Configuration
The dashboards keeps the same certificates as those are created from the same root CA, the certs are
unread,
Wazuh Configuration
The dashboards keeps the same certificates as those are created from the same root CA, the certs are
Jan 17
Sumit Kumawat
,
Gastón Dario Pacciaroni
2
Jan 17
Need Help with White-labeling Wazuh Agents for Custom Domain and Branding
Hello, Sumit. Thank you for reaching out. I can provide some basic guidance, as your inquiry covers
unread,
Need Help with White-labeling Wazuh Agents for Custom Domain and Branding
Hello, Sumit. Thank you for reaching out. I can provide some basic guidance, as your inquiry covers
Jan 17
cyber...@gmail.com
,
Olamilekan Abdullateef Ajani
5
Jan 17
Help with a rule
Spoke too soon again. Sorry. I am getting alerts for both rules. On Friday, 17 January 2025 at 11:46:
unread,
Help with a rule
Spoke too soon again. Sorry. I am getting alerts for both rules. On Friday, 17 January 2025 at 11:46:
Jan 17
Facu Basgall
Jan 17
integration configuration
Hi, I need your help, I didn't find much information about it in the documentation. I want to
unread,
integration configuration
Hi, I need your help, I didn't find much information about it in the documentation. I want to
Jan 17
Thaynara Soares
,
Diego Andrés Cappri
33
Jan 17
Set up hot-warm architecture
curl: (52) Empty reply from server Em sexta-feira, 17 de janeiro de 2025 às 10:22:31 UTC-4, Diego
unread,
Set up hot-warm architecture
curl: (52) Empty reply from server Em sexta-feira, 17 de janeiro de 2025 às 10:22:31 UTC-4, Diego
Jan 17
Khalid Hussain
,
Santiago Padilla Alvarez
2
Jan 17
Seeking Guidance on Learning Wazuh
Hi! Wazuh is a security platform that provides unified XDR and SIEM protection for endpoints and
unread,
Seeking Guidance on Learning Wazuh
Hi! Wazuh is a security platform that provides unified XDR and SIEM protection for endpoints and
Jan 17
German DiCasas
,
Adedamola Okelola
2
Jan 17
DEBUG: Can't read from 'logs/alerts/alerts.json'
Hello German, Three issues are observable from the logs you shared: 1. Log rotation problem 2.
unread,
DEBUG: Can't read from 'logs/alerts/alerts.json'
Hello German, Three issues are observable from the logs you shared: 1. Log rotation problem 2.
Jan 17
Emre Erdem
, …
Rolly Davany Mougoue Kakanou
4
Jan 17
Vulnerability Detection dashboard problems
Hello Emre, Please share the out put of the following command: cat /var/ossec/logs/ossec.log | grep -
unread,
Vulnerability Detection dashboard problems
Hello Emre, Please share the out put of the following command: cat /var/ossec/logs/ossec.log | grep -
Jan 17
Dmitry Mikheev
,
Santiago David Vendramini
2
Jan 17
FIM wazuh opens Windows registry for writing?
Hi! I'm reviewing this, I will answer you ASAP! On Friday, January 17, 2025 at 1:33:18 PM UTC+1
unread,
FIM wazuh opens Windows registry for writing?
Hi! I'm reviewing this, I will answer you ASAP! On Friday, January 17, 2025 at 1:33:18 PM UTC+1
Jan 17
German DiCasas
,
Nahuel Figueroa
7
Jan 17
Overlong JSON alert read from 'logs/alerts/alerts.json'
Could you make a python script that reads the /var/ossec/logs/archives/archives.json (logall_json
unread,
Overlong JSON alert read from 'logs/alerts/alerts.json'
Could you make a python script that reads the /var/ossec/logs/archives/archives.json (logall_json
Jan 17
Jaime
,
hasitha.u...@wazuh.com
2
Jan 17
Auth0 authentication
Hi Jaime, Currently here are the official available single sign identity providers. Okta Microsoft
unread,
Auth0 authentication
Hi Jaime, Currently here are the official available single sign identity providers. Okta Microsoft
Jan 17
Mithun Haridas
,
Pablo Ariel Gonzalez
13
Jan 17
Wazuh Rule Not Triggering Correctly for Internal LAN-to-LAN Traffic in 5-Minute Window
Hi Pablo, Waiting for your response with a perfect solution for this issue. On Friday, January 17,
unread,
Wazuh Rule Not Triggering Correctly for Internal LAN-to-LAN Traffic in 5-Minute Window
Hi Pablo, Waiting for your response with a perfect solution for this issue. On Friday, January 17,
Jan 17
Albert Waweru
, …
Damian Alfredo Mangold
6
Jan 17
Vulnerbaility Detection 4.10
Hello Damian, i indeed executed step 5 but still i am not getting any events on the vulnerability
unread,
Vulnerbaility Detection 4.10
Hello Damian, i indeed executed step 5 but still i am not getting any events on the vulnerability
Jan 17
natasa jezdimirovic
,
Md. Nazmur Sakib
4
Jan 17
Problem with Wazuh Custom Decoder
Hello, I would like to make exceptions for certain tasks. I attempted to add exceptions for some
unread,
Problem with Wazuh Custom Decoder
Hello, I would like to make exceptions for certain tasks. I attempted to add exceptions for some
Jan 17
Andrehens Chicfici
, …
Bony V John
13
Jan 17
User management gone after upgrade to 4.10.0
Hi, Please refer to the GitHub issue: https://github.com/wazuh/wazuh/issues/27687#issuecomment-
unread,
User management gone after upgrade to 4.10.0
Hi, Please refer to the GitHub issue: https://github.com/wazuh/wazuh/issues/27687#issuecomment-
Jan 17
redant
,
Bony V John
3
Jan 17
dashboard error
Hi Redant, From the shared log, it might be realed to JVM issue. To mitigate this issue, you can
unread,
dashboard error
Hi Redant, From the shared log, it might be realed to JVM issue. To mitigate this issue, you can
Jan 17
TAP top
,
Stuti Gupta
4
Jan 17
Optimizing Log Storage Management in Wazuh 4.8.0 with OpenSearch 7.10 on Ubuntu
Hi Tap Please Check this for compression. It is compressing data by default https://opensearch.org/
unread,
Optimizing Log Storage Management in Wazuh 4.8.0 with OpenSearch 7.10 on Ubuntu
Hi Tap Please Check this for compression. It is compressing data by default https://opensearch.org/
Jan 17
ΣЯMЦЯΣПZ
,
hasitha.u...@wazuh.com
4
Jan 17
update from source to 4.10
Hi ΣЯMЦЯΣПZ, You're very welcome! I'm glad to hear your issue was resolved! If you run into
unread,
update from source to 4.10
Hi ΣЯMЦЯΣПZ, You're very welcome! I'm glad to hear your issue was resolved! If you run into
Jan 17
sau sau
, …
Maknus
5
Jan 17
Blocking user account in windows - Active response
Hi, I'd like to revisit this topic. Has anyone managed to create an Active Response that blocks a
unread,
Blocking user account in windows - Active response
Hi, I'd like to revisit this topic. Has anyone managed to create an Active Response that blocks a
Jan 17
David Martinez
, …
Olamilekan Abdullateef Ajani
11
Jan 17
Fortigate syslog error
Hello David, From what you have mentioned, you can see the alerts in the archive.json file and it has
unread,
Fortigate syslog error
Hello David, From what you have mentioned, you can see the alerts in the archive.json file and it has
Jan 17
M G
,
Olamilekan Abdullateef Ajani
5
Jan 17
vulnerability db
Hello MG, Wazuh does not delay informing about vulnerabilities, in fact you can verify the feed
unread,
vulnerability db
Hello MG, Wazuh does not delay informing about vulnerabilities, in fact you can verify the feed
Jan 17
Zaks Ace
,
Md. Nazmur Sakib
7
Jan 17
Wazuh with ServiceNow integration
For testing Let's ingest the logs in this way. First, increase the rule 5501 level to 13. Add
unread,
Wazuh with ServiceNow integration
For testing Let's ingest the logs in this way. First, increase the rule 5501 level to 13. Add
Jan 17
Karl Napf
,
Bony V John
3
Jan 17
Filtering Windows events in the logcollector of a Wazuh agent.
Hi, thanks for the answer and your input! Regarding answer 4: I tried your code snippet in a test
unread,
Filtering Windows events in the logcollector of a Wazuh agent.
Hi, thanks for the answer and your input! Regarding answer 4: I tried your code snippet in a test
Jan 17
Kerim Karataş
,
Bony V John
2
Jan 17
Wazuh sends 2 alerts as one email.
Hi Kerim, You can send separate emails for each alert by using the <do_not_group/> tag in the
unread,
Wazuh sends 2 alerts as one email.
Hi Kerim, You can send separate emails for each alert by using the <do_not_group/> tag in the
Jan 17
shiyas s
,
Md. Nazmur Sakib
4
Jan 17
Suricata integration with wazuh server
Hi shiyas, Sorry for the late response. Please configure your Suricata configuration following this
unread,
Suricata integration with wazuh server
Hi shiyas, Sorry for the late response. Please configure your Suricata configuration following this
Jan 17
Mélina Derdab
,
Md. Nazmur Sakib
6
Jan 17
Get alerts on directory modifications
For this error but according to the journaml file (journalctl -xeu wazuh-manager.service) the
unread,
Get alerts on directory modifications
For this error but according to the journaml file (journalctl -xeu wazuh-manager.service) the
Jan 17