You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The Agentless Integrity check BSD capability uses the /var/ossec/agentless/ssh_integrity_check_bsd script to connect the remote BSD system via SSH and run the defined commands to extract the required information.
We noticed the current code is not working as expected with pFsense, which is running on FreeBSD.
How to reproduce
One the SSH connection is configured, we can test it with :
cd /var/ossec/ ; expect agentless/ssh_integrity_check_bsd <user>@<hostname> /directory_to_monitor
Because of the menu of pfSense, which isn't directly a shell, we have to tell the script to wait, then to go to the shell option. Otherwise, the menu will be loaded several times, and the integrity scan won't be performed.
Proposed fix
After a few tries, we managed to obtain a correct script, just by adding a few lines:
Description
The Agentless Integrity check BSD capability uses the /var/ossec/agentless/ssh_integrity_check_bsd script to connect the remote BSD system via SSH and run the defined commands to extract the required information.
We noticed the current code is not working as expected with pFsense, which is running on FreeBSD.
How to reproduce
One the SSH connection is configured, we can test it with :
Because of the menu of pfSense, which isn't directly a shell, we have to tell the script to wait, then to go to the shell option. Otherwise, the menu will be loaded several times, and the integrity scan won't be performed.
Proposed fix
After a few tries, we managed to obtain a correct script, just by adding a few lines:
Thanks in advance.
Best regards.
The text was updated successfully, but these errors were encountered: