Remove mount point for SOCtopus generated playbook rules to avoid them activating and sending alerts to TheHive

2025-12-09 10:42:54 +01:00 · 2020-09-30 15:14:37 -04:00
parent 8b5ff31351
commit 3af6e9e1fe
1 changed files with 0 additions and 1 deletions
--- a/salt/soctopus/init.sls
+++ b/salt/soctopus/init.sls
@@ -63,7 +63,6 @@ so-soctopus:
    - binds:
      - /opt/so/conf/soctopus/SOCtopus.conf:/SOCtopus/SOCtopus.conf:ro
      - /opt/so/log/soctopus/:/var/log/SOCtopus/:rw
-      - /opt/so/rules/elastalert/playbook:/etc/playbook-rules:rw
      - /opt/so/conf/navigator/nav_layer_playbook.json:/etc/playbook/nav_layer_playbook.json:rw
      {% if ISAIRGAP is sameas true %}
      - /nsm/repo/rules/sigma:/soctopus/sigma