CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #14537 from Security-Onion-Solutions/2.4/idstoolsfix

Browse Source 
Run so-rule-update when it changes
This commit is contained in:
Josh Brower
2025-04-14 11:20:32 -04:00
committed by GitHub
parent f1070992a8 ceabb673e0
commit 240484deea
2 changed files with 17 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
salt/idstools/config.sls
View File

@@ -24,13 +24,23 @@ idstools_sbin:
- group: 939 - group: 939
- file_mode: 755 - file_mode: 755
idstools_sbin_jinja: # If this is used, exclude so-rule-update
file.recurse: #idstools_sbin_jinja:
- name: /usr/sbin # file.recurse:
- source: salt://idstools/tools/sbin_jinja # - name: /usr/sbin
# - source: salt://idstools/tools/sbin_jinja
# - user: 934
# - group: 939
# - file_mode: 755
# - template: jinja
idstools_so-rule-update:
file.managed:
- name: /usr/sbin/so-rule-update
- source: salt://idstools/tools/sbin_jinja/so-rule-update
- user: 934 - user: 934
- group: 939 - group: 939
- file_mode: 755 - mode: 755
- template: jinja - template: jinja
suricatacustomdirsfile: suricatacustomdirsfile:

2
salt/idstools/enabled.sls
View File

@@ -55,6 +55,7 @@ so-idstools:
{% endif %} {% endif %}
- watch: - watch:
- file: idstoolsetcsync - file: idstoolsetcsync
- file: idstools_so-rule-update
delete_so-idstools_so-status.disabled: delete_so-idstools_so-status.disabled:
file.uncomment: file.uncomment:
@@ -76,6 +77,7 @@ run_so-rule-update:
- require: - require:
- docker_container: so-idstools - docker_container: so-idstools
- onchanges: - onchanges:
- file: idstools_so-rule-update
- file: idstoolsetcsync - file: idstoolsetcsync
- file: synclocalnidsrules - file: synclocalnidsrules
- order: last - order: last