mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-08 02:02:50 +01:00
FIX: surilogcompress cron job not running
The suricata user was originally created with `/opt/so/conf/suricata` as its home directory. I think at some point we changed permissions on `/opt/so/conf` and at that point the `surilogcompress` cron job stopped working. Changing the home directory to `/nsm/suricata` works on all of my PROD systems (including Ubuntu and CentOS). For more information, please see: https://github.com/Security-Onion-Solutions/securityonion/issues/7133
This commit is contained in:
Doug Burks
GitHub
@@ -36,12 +36,12 @@ suricatagroup:
|
||||
- name: suricata
|
||||
- gid: 940
|
||||
|
||||
# Add ES user
|
||||
# Add Suricata user
|
||||
suricata:
|
||||
user.present:
|
||||
- uid: 940
|
||||
- gid: 940
|
||||
- home: /opt/so/conf/suricata
|
||||
- home: /nsm/suricata
|
||||
- createhome: False
|
||||
|
||||
suridir:
|
||||
|
||||
Reference in New Issue
Block a user