From bba9913be1267a7037d3de0b848f08c3e3566696 Mon Sep 17 00:00:00 2001
From: Josh Brower <Josh@Defensivedepth.com>
Date: Wed, 17 Mar 2021 08:25:25 -0400
Subject: [PATCH] Temp revert Fleet Live Query to Hunt

---
 pillar/logstash/manager.sls | 1 -
 pillar/logstash/search.sls  | 3 +--
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/pillar/logstash/manager.sls b/pillar/logstash/manager.sls
index 1aa445c97..6f3ba495b 100644
--- a/pillar/logstash/manager.sls
+++ b/pillar/logstash/manager.sls
@@ -3,7 +3,6 @@ logstash:
   pipelines:
     manager:
       config:
-        - so/0008_input_fleet_livequery.conf.jinja
         - so/0009_input_beats.conf      
         - so/0010_input_hhbeats.conf
         - so/9999_output_redis.conf.jinja
diff --git a/pillar/logstash/search.sls b/pillar/logstash/search.sls
index 8ae84fe1f..2da8e6c59 100644
--- a/pillar/logstash/search.sls
+++ b/pillar/logstash/search.sls
@@ -7,8 +7,7 @@ logstash:
         - so/9000_output_zeek.conf.jinja
         - so/9002_output_import.conf.jinja
         - so/9034_output_syslog.conf.jinja
-        - so/9100_output_osquery.conf.jinja
-        - so/9101_output_osquery_livequery.conf.jinja        
+        - so/9100_output_osquery.conf.jinja  
         - so/9400_output_suricata.conf.jinja
         - so/9500_output_beats.conf.jinja
         - so/9600_output_ossec.conf.jinja