diff --git a/salt/soc/config.sls b/salt/soc/config.sls index 23f08014c..7607da5ff 100644 --- a/salt/soc/config.sls +++ b/salt/soc/config.sls @@ -192,10 +192,11 @@ socsigmarepo: socsensoronirepos: file.directory: - - name: /opt/sensoroni/repos + - name: /opt/so/conf/soc/ai_summary_repos - user: 939 - group: 939 - mode: 775 + - makedirs: True {% else %} diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml index dd3ea4374..f191fd054 100644 --- a/salt/soc/defaults.yaml +++ b/salt/soc/defaults.yaml @@ -1314,7 +1314,7 @@ soc: elastalertengine: aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources aiRepoBranch: generated-summaries-stable - aiRepoPath: /opt/sensoroni/repos + aiRepoPath: /opt/sensoroni/ai_summary_repos showAiSummaries: true autoUpdateEnabled: true autoEnabledSigmaRules: @@ -1397,7 +1397,7 @@ soc: strelkaengine: aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources aiRepoBranch: generated-summaries-stable - aiRepoPath: /opt/sensoroni/repos + aiRepoPath: /opt/sensoroni/ai_summary_repos showAiSummaries: true autoEnabledYaraRules: - securityonion-yara @@ -1422,7 +1422,7 @@ soc: suricataengine: aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources aiRepoBranch: generated-summaries-stable - aiRepoPath: /opt/sensoroni/repos + aiRepoPath: /opt/sensoroni/ai_summary_repos showAiSummaries: true autoUpdateEnabled: true communityRulesImportFrequencySeconds: 86400 diff --git a/salt/soc/enabled.sls b/salt/soc/enabled.sls index 9b50b449b..99499115c 100644 --- a/salt/soc/enabled.sls +++ b/salt/soc/enabled.sls @@ -33,6 +33,7 @@ so-soc: - /nsm/soc/uploads:/nsm/soc/uploads:rw - /opt/so/log/soc/:/opt/sensoroni/logs/:rw - /opt/so/conf/soc/soc.json:/opt/sensoroni/sensoroni.json:ro + - /opt/so/conf/soc/ai_summary_repos:/opt/sensoroni/ai_summary_repos:rw {% if SOCMERGED.telemetryEnabled and not GLOBALS.airgap %} - /opt/so/conf/soc/analytics.js:/opt/sensoroni/html/js/analytics.js:ro {% endif %}