Wazuh | Mailing List

Hello Jorge, Apologies for the delayed response. Please can you send me the log of this event in JSON

Hello German, There's a syntax error in the rule that you've shared, since the tag if_mitre

I put together a script to gather SCA results, it writes output to a file in JSON format for analysis

Hello Rijin, You can match two rules with a child rule using if_sid and if_matched_sid together.

Hi Daniel, The code "16" is related to throttling. It is a Warning message that lets you

Hello, Is there any update about the topic ? i'm facing the same issue Thank you ! Le mardi 9

Hi Facu, My team confirms that it's not currently possible. Wazuh is not prepared to read an

Hi, Following the new blog notes for multi-site implementation, we modify our index pattern to match

Hello, We have verified that the Wazuh integrator cannot handle more than one alert per second. This

Hi Philip, For this, You can try the following steps: Activate the 'logall' option within the

Hi, Wazuh cannot alert based on the absence of logs by itself. You will need some external mechanism

Hi Henry, Can you please provide the information about your cluster health and disk space? If you can

Hi Henry! As discussed earlier, the real-time option is not available for windows_registry. Hence, it

Hello Kudret, sorry for the delay, as long as the Wazuh Server Manager (which is responsible for

Hi Bhuvanesh, The blog post has been published, you can check it out Wazuh multi-site implementation

Hello, Please go ahead and carefully implement this. You can specify the time-out in the ossec.conf

Thanks Stuti, I've built a new machine, installed Wazuh there, and everything is fine now. Jake

Hello, Serhii So you're still obtaining the error in 4.7.4. I upgraded a windows agent to the

Hello, Raj What I mean by it reappearing is that, after you change the limit and restart, at some

Hi IT Umformtechnik, The maximum length path is a known issue: https://github.com/wazuh/wazuh/issues/

I am glad to hear that you have fixed the problem. Regards! On Thursday, June 6, 2024 at 10:24:22 AM

Hello Armando, There are a few warnings visible in your screenshot, but it's still likely that

Hi Seyla, i am running into the same issue on 4.7.4 Reading your response i have configured the wodle

Hi MatV, Hi if you want to test that the wazuh indexer is working you can try these 2 commands if

Hi, This has been removed in the next versions. The only option to remove it now is to make a custom

Hi, For users with read-only permissions it is normal that they can access all resources. Regarding

Hello Meraz, From the logs, it states that the access_key and secret_key authentication parameters

Hi there I've like to change the threshold of the API to allow more on the api.yaml If i

Hi Luo, I am glad to hear that the problem has been solved, Best regards! On Thursday, June 6, 2024

From the information provided, it is clear that the indices have not been formed recently. There is