From f431e9ae08310963a75a20e56682da7378ff1f18 Mon Sep 17 00:00:00 2001 From: weslambert Date: Thu, 21 Mar 2024 10:06:25 -0400 Subject: [PATCH 1/3] Remove Strelka config --- salt/manager/init.sls | 45 ------------------------------------------- 1 file changed, 45 deletions(-) diff --git a/salt/manager/init.sls b/salt/manager/init.sls index c62a41999..0ff4fa85a 100644 --- a/salt/manager/init.sls +++ b/salt/manager/init.sls @@ -117,51 +117,6 @@ rules_dir: - group: socore - makedirs: True -{% if STRELKAMERGED.rules.enabled %} -strelkarepos: - file.managed: - - name: /opt/so/conf/strelka/repos.txt - - source: salt://strelka/rules/repos.txt.jinja - - template: jinja - - defaults: - STRELKAREPOS: {{ STRELKAMERGED.rules.repos }} - - makedirs: True -strelka-yara-update: - {% if MANAGERMERGED.reposync.enabled and not GLOBALS.airgap %} - cron.present: - {% else %} - cron.absent: - {% endif %} - - user: socore - - name: '/usr/sbin/so-yara-update >> /opt/so/log/yarasync/yara-update.log 2>&1' - - identifier: strelka-yara-update - - hour: '7' - - minute: '1' -strelka-yara-download: - {% if MANAGERMERGED.reposync.enabled and not GLOBALS.airgap %} - cron.present: - {% else %} - cron.absent: - {% endif %} - - user: socore - - name: '/usr/sbin/so-yara-download >> /opt/so/log/yarasync/yara-download.log 2>&1' - - identifier: strelka-yara-download - - hour: '7' - - minute: '1' -{% if not GLOBALS.airgap %} -update_yara_rules: - cmd.run: - - name: /usr/sbin/so-yara-update - - onchanges: - - file: yara_update_scripts -download_yara_rules: - cmd.run: - - name: /usr/sbin/so-yara-download - - onchanges: - - file: yara_update_scripts -{% endif %} -{% endif %} - {% else %} {{sls}}_state_not_allowed: From 1568f57096b8e3ab68ff79ec0277ce6c0f82271e Mon Sep 17 00:00:00 2001 From: weslambert Date: Thu, 21 Mar 2024 10:07:27 -0400 Subject: [PATCH 2/3] Remove Strelka config --- salt/strelka/backend/config.sls | 10 ---------- 1 file changed, 10 deletions(-) diff --git a/salt/strelka/backend/config.sls b/salt/strelka/backend/config.sls index db18a68cc..b39e06ac8 100644 --- a/salt/strelka/backend/config.sls +++ b/salt/strelka/backend/config.sls @@ -50,16 +50,6 @@ backend_taste: - user: 939 - group: 939 -{% if STRELKAMERGED.rules.enabled %} -strelkarules: - file.recurse: - - name: /opt/so/conf/strelka/rules - - source: salt://strelka/rules - - user: 939 - - group: 939 - - clean: True -{% endif %} - {% else %} {{sls}}_state_not_allowed: From 8429a364dc8483fcb3ee15681843de1b2a16bec3 Mon Sep 17 00:00:00 2001 From: weslambert Date: Thu, 21 Mar 2024 10:09:36 -0400 Subject: [PATCH 3/3] Remove Strelka rules watch --- salt/strelka/backend/enabled.sls | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/salt/strelka/backend/enabled.sls b/salt/strelka/backend/enabled.sls index fc56f4197..0df764a6e 100644 --- a/salt/strelka/backend/enabled.sls +++ b/salt/strelka/backend/enabled.sls @@ -42,8 +42,8 @@ strelka_backend: {% endfor %} {% endif %} - restart_policy: on-failure - - watch: - - file: strelkarules + #- watch: + #- file: strelkarules delete_so-strelka-backend_so-status.disabled: file.uncomment: