From 4222aad954f22066815faf7439f67802c42b04e5 Mon Sep 17 00:00:00 2001 From: Steven Spencer Date: Wed, 2 Feb 2022 10:31:08 -0600 Subject: [PATCH] Added codeblocks back ossec-hids * Working with translation team on this document and some issues that Crowdin has been tackling --- .../web/apache_hardened_webserver/ossec-hids.md | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/docs/guides/web/apache_hardened_webserver/ossec-hids.md b/docs/guides/web/apache_hardened_webserver/ossec-hids.md index 1283fd5529..1c32580552 100644 --- a/docs/guides/web/apache_hardened_webserver/ossec-hids.md +++ b/docs/guides/web/apache_hardened_webserver/ossec-hids.md @@ -83,9 +83,9 @@ We will break apart this configuration showing the changes in line and explainin ``` -By default, email notifications are turned off and the configuration is basically empty. You want to turn on email notification and identify the people who should receive the email reports by email address. +By default, email notifications are turned off and the `` configuration is basically empty. You want to turn on email notification and identify the people who should receive the email reports by email address. -The section currently shows localhost, however you can specify an email server relay if you prefer, or simply setup the postfix email settings for the local host by following [this guide](../../email/postfix_reporting.md). +The `` section currently shows localhost, however you can specify an email server relay if you prefer, or simply setup the postfix email settings for the local host by following [this guide](../../email/postfix_reporting.md). You need to set the "from" address, so that you can deal with SPAM filters on your email server which may see this email as SPAM. To avoid getting inundated with email, set the email reporting to 1 per hour. You can expand this or remark out this command if you like while you are getting started with _ossec-hids_ and need to see things quickly. @@ -99,11 +99,11 @@ The sections deal with the server's localohost IP and with the "pub ``` -The section takes a look at a list of directories to include and exclude when looking for compromised files. Think of this as yet another tool for watching and protecting the file system against vulnerabilities. You should review the list of directories and see if there are others that you want to add in to the section. +The `` section takes a look at a list of directories to include and exclude when looking for compromised files. Think of this as yet another tool for watching and protecting the file system against vulnerabilities. You should review the list of directories and see if there are others that you want to add in to the `` section. -The section just beneath the section is yet another protection layer. The locations that both and watch are editable, but you probably will not need to make any changes to them. +The `` section just beneath the `` section is yet another protection layer. The locations that both `` and `` watch are editable, but you probably will not need to make any changes to them. -Changing the for the run to once every 24 hours (86400 seconds) from the default of 22 hours is an optional change shown above. +Changing the `` for the `` run to once every 24 hours (86400 seconds) from the default of 22 hours is an optional change shown above. ``` @@ -116,7 +116,7 @@ Changing the for the run to once every 24 hours (86400 s ``` -The section deals with the locations of the logs we want to watch. There are entries already in place for _syslog_ and _secure_ logs that you just need to verify the path to, but everything else can be left as is. +The `` section deals with the locations of the logs we want to watch. There are entries already in place for _syslog_ and _secure_ logs that you just need to verify the path to, but everything else can be left as is. We do need to add in the Apache log locations however, and we want to add these in as wild_cards, because we could have a bunch of logs for a lot of different web customers. That format is shown above.