CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Set Strelka rules enabled by default for Eval Mode

Browse Source
This commit is contained in:
Wes Lambert
2020-08-14 15:33:38 +00:00
parent b662f9354f
commit 7686a05f42
1 changed files with 5 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
setup/so-setup
View File

@@ -148,6 +148,7 @@ if [ "$install_type" = 'EVAL' ]; then
is_manager=true is_manager=true
is_sensor=true is_sensor=true
is_eval=true is_eval=true
STRELKARULES=1
elif [ "$install_type" = 'STANDALONE' ]; then elif [ "$install_type" = 'STANDALONE' ]; then
is_manager=true is_manager=true
is_distmanager=true is_distmanager=true
@@ -308,6 +309,10 @@ if [[ $is_manager && ! $is_eval ]]; then
whiptail_oinkcode whiptail_oinkcode
fi fi
if [[ $STRELKA == 1 ]]; then
whiptail_strelka_rules
fi
if [ "$MANAGERADV" = 'ADVANCED' ] && [ "$ZEEKVERSION" != 'SURICATA' ]; then if [ "$MANAGERADV" = 'ADVANCED' ] && [ "$ZEEKVERSION" != 'SURICATA' ]; then
whiptail_manager_adv_service_zeeklogs whiptail_manager_adv_service_zeeklogs
fi fi
@@ -316,9 +321,6 @@ fi
if [[ $is_manager ]]; then if [[ $is_manager ]]; then
whiptail_components_adv_warning whiptail_components_adv_warning
whiptail_enable_components whiptail_enable_components
if [[ $STRELKA == 1 ]]; then
whiptail_strelka_rules
fi
fi fi
if [[ $is_manager || $is_import ]]; then if [[ $is_manager || $is_import ]]; then