Creating an alarm system in case of a rogue app filling up disk space with logs, system error or break-in attempt.
Goal for this Hackweek
Learn how OSSEC collects and analyzes events and how I can use that to create alarms.
One test VM to run OSSEC
A couple of lab machines to collect logs from, eventually use the logs from syslog-devel.suse.de
This project is one of its kind!