#!/bin/sh

# What's the IP Address of the OSSEC HIDS server?:
export USER_AGENT_SERVER_IP=127.0.0.1

# Do you want to run the integrity check daemon? (y/n) [y]:
export USER_ENABLE_SYSCHECK=y

#Do you want to run the rootkit detection engine? (y/n) [y]:
export USER_ENABLE_ROOTCHECK=y

#       Active response allows you to execute a specific 
#       command based on the events received. For example,
#       you can block an IP address or disable access for
#       a specific user.  
#       More information at:
#       http://www.ossec.net/en/manual.html#active-response
#       
#   - Do you want to enable active response? (y/n) [y]: 
export USER_ENABLE_ACTIVE_RESPONSE=y