IDH - Enable default states

salt/idh/defaults.yml

@@ -2,28 +2,6 @@ idh:
   opencanary:
     config:
       device.node_id: {{ grains.host }}
-      git.enabled: true
-      git.port: 9418
-      ftp.enabled: true
-      ftp.port: 21
-      ftp.banner: FTP server ready
-      http.banner: Apache/2.2.22 (Ubuntu)
-      http.enabled: true
-      http.port: 80
-      http.skin: nasLogin
-      http.skin.list:
-      - desc: Plain HTML Login
-        name: basicLogin
-      - desc: Synology NAS Login
-        name: nasLogin
-      httpproxy.enabled: false
-      httpproxy.port: 8080
-      httpproxy.skin: squid
-      httproxy.skin.list:
-      - desc: Squid
-        name: squid
-      - desc: Microsoft ISA Server Web Proxy
-        name: ms-isa
       logger:
         class: PyLogger
         kwargs:
@@ -42,26 +20,6 @@ idh:
       portscan.synrate: 5
       portscan.nmaposrate: 5
       portscan.lorate: 3
-      smb.auditfile: /var/log/samba-audit.log
-      smb.enabled: false
-      mysql.enabled: false
-      mysql.port: 3306
-      mysql.banner: 5.5.43-0ubuntu0.14.04.1
-      ssh.enabled: false
-      ssh.port: 22
-      ssh.version: SSH-2.0-OpenSSH_5.1p1 Debian-4
-      redis.enabled: false
-      redis.port: 6379
-      rdp.enabled: false
-      rdp.port: 3389
-      sip.enabled: false
-      sip.port: 5060
-      snmp.enabled: false
-      snmp.port: 161
-      ntp.enabled: false
-      ntp.port: '123'
-      tftp.enabled: false
-      tftp.port: 69
       tcpbanner.maxnum: 10
       tcpbanner.enabled: false
       tcpbanner_1.enabled: false
@@ -74,17 +32,4 @@ idh:
       tcpbanner_1.keep_alive_secret: ''
       tcpbanner_1.keep_alive_probes: 11
       tcpbanner_1.keep_alive_interval: 300
-      tcpbanner_1.keep_alive_idle: 300
-      telnet.enabled: false
-      telnet.port: '23'
-      telnet.banner: ''
-      telnet.honeycreds:
-      - username: admin
-        password: $pbkdf2-sha512$19000$bG1NaY3xvjdGyBlj7N37Xw$dGrmBqqWa1okTCpN3QEmeo9j5DuV2u1EuVFD8Di0GxNiM64To5O/Y66f7UASvnQr8.LCzqTm6awC8Kj/aGKvwA
-      - username: admin
-        password: admin1
-      mssql.enabled: false
-      mssql.version: '2012'
-      mssql.port: 1433
-      vnc.enabled: false
-      vnc.port: 5000
+      tcpbanner_1.keep_alive_idle: 300

salt/idh/defaults/ftp.defaults.yaml

@@ -0,0 +1,6 @@
+idh:
+  opencanary:
+    config:
+      ftp.enabled: true
+      ftp.port: 21
+      ftp.banner: FTP server ready

salt/idh/defaults/git.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      git.enabled: true
+      git.port: 9418      

salt/idh/defaults/http.defaults.yaml

@@ -0,0 +1,12 @@
+idh:
+  opencanary:
+    config:
+      http.banner: Apache/2.2.22 (Ubuntu)
+      http.enabled: false
+      http.port: 80
+      http.skin: nasLogin
+      http.skin.list:
+      - desc: Plain HTML Login
+        name: basicLogin
+      - desc: Synology NAS Login
+        name: nasLogin

salt/idh/defaults/httpproxy.defaults.yaml

@@ -0,0 +1,11 @@
+idh:
+  opencanary:
+    config:
+      httpproxy.enabled: false
+      httpproxy.port: 8080
+      httpproxy.skin: squid
+      httproxy.skin.list:
+      - desc: Squid
+        name: squid
+      - desc: Microsoft ISA Server Web Proxy
+        name: ms-isa

salt/idh/defaults/mssql.defaults.yaml

@@ -0,0 +1,6 @@
+idh:
+  opencanary:
+    config:
+      mssql.enabled: true
+      mssql.version: '2012'
+      mssql.port: 1433

salt/idh/defaults/mysql.defaults.yaml

@@ -0,0 +1,6 @@
+idh:
+  opencanary:
+    config:
+      mysql.enabled: false
+      mysql.port: 3306
+      mysql.banner: 5.5.43-0ubuntu0.14.04.1

salt/idh/defaults/ntp.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      ntp.enabled: false
+      ntp.port: '123'

salt/idh/defaults/rdp.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      rdp.enabled: false
+      rdp.port: 3389

salt/idh/defaults/redis.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      redis.enabled: false
+      redis.port: 6379

salt/idh/defaults/sip.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      sip.enabled: false
+      sip.port: 5060

salt/idh/defaults/smb.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      smb.auditfile: /var/log/samba-audit.log
+      smb.enabled: false

salt/idh/defaults/snmp.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      snmp.enabled: false
+      snmp.port: 161

salt/idh/defaults/ssh.defaults.yaml

@@ -0,0 +1,6 @@
+idh:
+  opencanary:
+    config:
+      ssh.enabled: false
+      ssh.port: 22
+      ssh.version: SSH-2.0-OpenSSH_5.1p1 Debian-4

salt/idh/defaults/telnet.defaults.yaml

@@ -0,0 +1,11 @@
+idh:
+  opencanary:
+    config:
+      telnet.enabled: true
+      telnet.port: '23'
+      telnet.banner: ''
+      telnet.honeycreds:
+      - username: admin
+        password: $pbkdf2-sha512$19000$bG1NaY3xvjdGyBlj7N37Xw$dGrmBqqWa1okTCpN3QEmeo9j5DuV2u1EuVFD8Di0GxNiM64To5O/Y66f7UASvnQr8.LCzqTm6awC8Kj/aGKvwA
+      - username: admin
+        password: admin1

salt/idh/defaults/tftp.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      tftp.enabled: false
+      tftp.port: 69

salt/idh/defaults/vnc.defaults.yaml

@@ -0,0 +1,5 @@
+idh:
+  opencanary:
+    config:
+      vnc.enabled: true
+      vnc.port: 5000