TLS Support for OSSEC agent/master comms?
Posted: Tue May 18, 2021 6:10 am
Hi OSSEC Community,
I was wondering if it was possible to configure the ossec agents to send their data to the master node over HTTPS?
All examples seem to be IP based, or by using a hostname without a protocol. There's a protocol setting in the OSSEC agent configuration file, but that seems to only support "TCP" or "UDP".
The reason I ask is even internal networks should adhere to secure communication, and not being able to seemingly use TLS is a red flag
I was wondering if it was possible to configure the ossec agents to send their data to the master node over HTTPS?
All examples seem to be IP based, or by using a hostname without a protocol. There's a protocol setting in the OSSEC agent configuration file, but that seems to only support "TCP" or "UDP".
The reason I ask is even internal networks should adhere to secure communication, and not being able to seemingly use TLS is a red flag