CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-11 10:43:28 +01:00
Code Issues Packages Projects Releases Wiki Activity

change how we populate local.zeek - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/585

Browse Source
This commit is contained in:
m0duspwnens
2020-04-28 14:10:57 -04:00
parent c46a45f00f
commit 8d2ca003fb
3 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
pillar/zeek/init.sls
View File

@@ -16,7 +16,7 @@ zeek:
CfgDir: /opt/zeek/etc
CompressLogs: 1
local:
load:
'@load':
- misc/loaded-scripts
- tuning/defaults
- misc/capture-loss
@@ -48,7 +48,7 @@ zeek:
- securityonion/bpfconf
- securityonion/communityid
- securityonion/file-extraction
load-sigs:
'@load-sigs':
- frameworks/signatures/detect-windows-shells
redef:
- LogAscii::use_json = T;