TLS Support for OSSEC agent/master comms?

Support/Development for OSSEC
Nessworthy
New Forum User
New Forum User
Posts: 1
Joined: Tue May 18, 2021 6:05 am

TLS Support for OSSEC agent/master comms?

Unread post by Nessworthy »

Hi OSSEC Community,

I was wondering if it was possible to configure the ossec agents to send their data to the master node over HTTPS?

All examples seem to be IP based, or by using a hostname without a protocol. There's a protocol setting in the OSSEC agent configuration file, but that seems to only support "TCP" or "UDP".

The reason I ask is even internal networks should adhere to secure communication, and not being able to seemingly use TLS is a red flag :x
User avatar
cponton
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 61
Joined: Fri Oct 09, 2020 9:41 am

Re: TLS Support for OSSEC agent/master comms?

Unread post by cponton »

Hello!

Both agent registration and communication are AES256 encrypted and handled via TLS by default
https://docs.atomicorp.com/AEO/index.html
Post Reply