CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add content trust to all modules

Browse Source
This commit is contained in:
Mike Reeves
2019-05-02 16:53:19 -04:00
parent 9273b6cadd
commit f1e015edcf
18 changed files with 147 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
salt/bro/init.sls
View File

@@ -90,8 +90,14 @@ localbrosync:
- group: 939 - group: 939
- template: jinja - template: jinja
so-communitybroimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-communitybro:HH1.0.3
so-bro: so-bro:
docker_container.running: docker_container.running:
- require:
- so-communitybroimage
- image: soshybridhunter/so-communitybro:HH1.0.3 - image: soshybridhunter/so-communitybro:HH1.0.3
- privileged: True - privileged: True
- binds: - binds:
@@ -117,8 +123,14 @@ localbrosync:
- group: 939 - group: 939
- template: jinja - template: jinja
so-broimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-bro:HH1.0.6
so-bro: so-bro:
docker_container.running: docker_container.running:
- require:
- so-broimage
- image: soshybridhunter/so-bro:HH1.0.6 - image: soshybridhunter/so-bro:HH1.0.6
- privileged: True - privileged: True
- binds: - binds:

17
salt/common/init.sls
View File

@@ -101,8 +101,13 @@ nginxtmp:
- makedirs: True - makedirs: True
# Start the core docker # Start the core docker
so-coreimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-core:HH1.0.7
so-core: so-core:
docker_container.running: docker_container.running:
- require: so-coreimage
- image: soshybridhunter/so-core:HH1.0.7 - image: soshybridhunter/so-core:HH1.0.7
- hostname: so-core - hostname: so-core
- user: socore - user: socore
@@ -155,8 +160,14 @@ tgrafconf:
- template: jinja - template: jinja
- source: salt://common/telegraf/etc/telegraf.conf - source: salt://common/telegraf/etc/telegraf.conf
so-telegrafimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-telegraf:HH1.0.7
so-telegraf: so-telegraf:
docker_container.running: docker_container.running:
- require:
- so-telegrafimage
- image: soshybridhunter/so-telegraf:HH1.0.7 - image: soshybridhunter/so-telegraf:HH1.0.7
- environment: - environment:
- HOST_PROC=/host/proc - HOST_PROC=/host/proc
@@ -210,8 +221,14 @@ influxdbconf:
- template: jinja - template: jinja
- source: salt://common/influxdb/etc/influxdb.conf - source: salt://common/influxdb/etc/influxdb.conf
so-influximage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-influxdb:HH1.0.7
so-influxdb: so-influxdb:
docker_container.running: docker_container.running:
- require:
- so-influximage
- image: soshybridhunter/so-influxdb:HH1.0.7 - image: soshybridhunter/so-influxdb:HH1.0.7
- hostname: influxdb - hostname: influxdb
- environment: - environment:

5
salt/curator/init.sls
View File

@@ -112,9 +112,14 @@ curdel:
- month: '*' - month: '*'
- dayweek: '*' - dayweek: '*'
so-curatorimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-curator:HH1.0.3
so-curator: so-curator:
docker_container.running: docker_container.running:
- require:
- so-curatorimage
- image: soshybridhunter/so-curator:HH1.0.3 - image: soshybridhunter/so-curator:HH1.0.3
- hostname: curator - hostname: curator
- name: so-curator - name: so-curator

6
salt/elastalert/init.sls
View File

@@ -79,8 +79,14 @@ elastarules:
# - group: 939 # - group: 939
# - template: jinja # - template: jinja
so-elastalertimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-elastalert:HH1.0.3
so-elastalert: so-elastalert:
docker_container.running: docker_container.running:
- require:
- so-elastalertimage
- image: soshybridhunter/so-elastalert:HH1.0.3 - image: soshybridhunter/so-elastalert:HH1.0.3
- hostname: elastalert - hostname: elastalert
- name: so-elastalert - name: so-elastalert

18
salt/elasticsearch/init.sls
View File

@@ -90,8 +90,14 @@ eslogdir:
- group: 939 - group: 939
- makedirs: True - makedirs: True
so-elasticsearchimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-elasticsearch:HH1.0.6
so-elasticsearch: so-elasticsearch:
docker_container.running: docker_container.running:
- require:
- so-elasticsearchimage
- image: soshybridhunter/so-elasticsearch:HH1.0.6 - image: soshybridhunter/so-elasticsearch:HH1.0.6
- hostname: elasticsearch - hostname: elasticsearch
- name: so-elasticsearch - name: so-elasticsearch
@@ -143,8 +149,14 @@ freqlogdir:
- group: 935 - group: 935
- makedirs: True - makedirs: True
so-freqimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-freqserver:HH1.0.3
so-freq: so-freq:
docker_container.running: docker_container.running:
- require:
- so-freqimage
- image: soshybridhunter/so-freqserver:HH1.0.3 - image: soshybridhunter/so-freqserver:HH1.0.3
- hostname: freqserver - hostname: freqserver
- name: so-freqserver - name: so-freqserver
@@ -179,8 +191,14 @@ dstatslogdir:
- group: 939 - group: 939
- makedirs: True - makedirs: True
so-domainstatsimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-domainstats:HH1.0.3
so-domainstats: so-domainstats:
docker_container.running: docker_container.running:
- require:
- so-domainstatsimage
- image: soshybridhunter/so-domainstats:HH1.0.3 - image: soshybridhunter/so-domainstats:HH1.0.3
- hostname: domainstats - hostname: domainstats
- name: so-domainstats - name: so-domainstats

5
salt/filebeat/init.sls
View File

@@ -49,9 +49,14 @@ filebeatconfsync:
# - name: /opt/so/conf/filebeat/etc/pki/filebeat.key # - name: /opt/so/conf/filebeat/etc/pki/filebeat.key
# - source: salt://filebeat/files/filebeat.key # - source: salt://filebeat/files/filebeat.key
so-filebeatimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-filebeat:HH1.0.6
so-filebeat: so-filebeat:
docker_container.running: docker_container.running:
- require:
- so-filebeatimage
- image: soshybridhunter/so-filebeat:HH1.0.6 - image: soshybridhunter/so-filebeat:HH1.0.6
- hostname: so-filebeat - hostname: so-filebeat
- user: root - user: root

10
salt/fleet/init.sls
View File

@@ -30,12 +30,12 @@ fleetlogdir:
- user: 939 - user: 939
- group: 939 - group: 939
- makedirs: True - makedirs: True
fleetsetupscript: fleetsetupscript:
file.managed: file.managed:
- name: /opt/so/conf/fleet/so-fleet-setup.sh - name: /opt/so/conf/fleet/so-fleet-setup.sh
- source: salt://fleet/so-fleet-setup.sh - source: salt://fleet/so-fleet-setup.sh
osquerypackageswebpage: osquerypackageswebpage:
file.managed: file.managed:
- name: /opt/so/conf/fleet/packages/index.html - name: /opt/so/conf/fleet/packages/index.html
@@ -59,8 +59,14 @@ fleetdbpriv:
- user: fleetdbuser - user: fleetdbuser
- host: 172.17.0.0/255.255.0.0 - host: 172.17.0.0/255.255.0.0
so-fleetimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-fleet:HH1.0.6
so-fleet: so-fleet:
docker_container.running: docker_container.running:
- require:
- so-fleetimage
- image: soshybridhunter/so-fleet:HH1.0.6 - image: soshybridhunter/so-fleet:HH1.0.6
- hostname: so-fleet - hostname: so-fleet
- port_bindings: - port_bindings:

30
salt/hive/init.sls
View File

@@ -30,8 +30,14 @@ hiveesdata:
- user: 939 - user: 939
- group: 939 - group: 939
so-thehive-esimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-thehive-es:HH1.0.7
so-thehive-es: so-thehive-es:
docker_container.running: docker_container.running:
- require:
- so-thehive-esimage
- image: soshybridhunter/so-thehive-es:HH1.0.7 - image: soshybridhunter/so-thehive-es:HH1.0.7
- hostname: so-thehive-es - hostname: so-thehive-es
- name: so-thehive-es - name: so-thehive-es
@@ -60,16 +66,26 @@ so-thehive-es:
# Install Cortex # Install Cortex
so-cortex: #so-corteximage:
docker_container.running: # cmd.run:
- image: thehiveproject/cortex:latest # - name: docker pull --disable-content-trust=false soshybridhunter/so-cortex:HH1.0.3
- hostname: so-cortex
- name: so-cortex #so-cortex:
- port_bindings: # docker_container.running:
- 0.0.0.0:9001:9001 # - image: thehiveproject/cortex:latest
# - hostname: so-cortex
# - name: so-cortex
# - port_bindings:
# - 0.0.0.0:9001:9001
so-thehiveimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-thehive:HH1.0.7
so-thehive: so-thehive:
docker_container.running: docker_container.running:
- require:
- so-thehiveimage
- image: soshybridhunter/so-thehive:HH1.0.7 - image: soshybridhunter/so-thehive:HH1.0.7
- hostname: so-thehive - hostname: so-thehive
- name: so-thehive - name: so-thehive

7
salt/idstools/init.sls
View File

@@ -48,11 +48,14 @@ ruleslink:
- name: /opt/so/saltstack/salt/suricata/rules - name: /opt/so/saltstack/salt/suricata/rules
- target: /opt/so/rules/nids - target: /opt/so/rules/nids
toosmooth/so-idstools:test2: so-idstoolsimage:
docker_image.present cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-idstools:HH1.0.3
so-idstools: so-idstools:
docker_container.running: docker_container.running:
- require:
- so-idstoolsimage
- image: soshybridhunter/so-idstools:HH1.0.3 - image: soshybridhunter/so-idstools:HH1.0.3
- hostname: so-idstools - hostname: so-idstools
- user: socore - user: socore

6
salt/kibana/init.sls
View File

@@ -54,9 +54,15 @@ synckibanacustom:
# File.Recurse for custom saved dashboards # File.Recurse for custom saved dashboards
so-kibanaimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-kibana:HH1.0.7
# Start the kibana docker # Start the kibana docker
so-kibana: so-kibana:
docker_container.running: docker_container.running:
- require:
- so-kibanaimage
- image: soshybridhunter/so-kibana:HH1.0.7 - image: soshybridhunter/so-kibana:HH1.0.7
- hostname: kibana - hostname: kibana
- user: kibana - user: kibana

5
salt/logstash/init.sls
View File

@@ -146,9 +146,14 @@ lslogdir:
- makedirs: True - makedirs: True
# Add the container # Add the container
so-logstashimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-logstash:HH1.0.6
so-logstash: so-logstash:
docker_container.running: docker_container.running:
- require:
- so-logstashimage
- image: soshybridhunter/so-logstash:HH1.0.6 - image: soshybridhunter/so-logstash:HH1.0.6
- hostname: so-logstash - hostname: so-logstash
- name: so-logstash - name: so-logstash

6
salt/master/init.sls
View File

@@ -46,9 +46,15 @@ acngcopyconf:
- name: /opt/so/conf/aptcacher-ng/etc/acng.conf - name: /opt/so/conf/aptcacher-ng/etc/acng.conf
- source: salt://master/files/acng/acng.conf - source: salt://master/files/acng/acng.conf
so-acngimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-acng:HH1.0.7
# Install the apt-cacher-ng container # Install the apt-cacher-ng container
so-aptcacherng: so-aptcacherng:
docker_container.running: docker_container.running:
- require:
- so-acngimage
- image: soshybridhunter/so-acng:HH1.0.7 - image: soshybridhunter/so-acng:HH1.0.7
- hostname: so-acng - hostname: so-acng
- port_bindings: - port_bindings:

6
salt/mysql/init.sls
View File

@@ -48,8 +48,14 @@ mysqldatadir:
- group: 939 - group: 939
- makedirs: True - makedirs: True
so-mysqlimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-mysql:HH1.0.7
so-mysql: so-mysql:
docker_container.running: docker_container.running:
- require:
- so-mysqlimage
- image: soshybridhunter/so-mysql:HH1.0.7 - image: soshybridhunter/so-mysql:HH1.0.7
- hostname: so-mysql - hostname: so-mysql
- user: socore - user: socore

6
salt/pcap/init.sls
View File

@@ -85,8 +85,14 @@ stenolog:
- group: 941 - group: 941
- makedirs: True - makedirs: True
so-stenoimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-steno:HH1.0.3
so-steno: so-steno:
docker_container.running: docker_container.running:
- require:
- so-stenoimage
- image: soshybridhunter/so-steno:HH1.0.3 - image: soshybridhunter/so-steno:HH1.0.3
- network_mode: host - network_mode: host
- privileged: True - privileged: True

6
salt/redis/init.sls
View File

@@ -47,8 +47,14 @@ redisconfsync:
toosmooth/so-redis:test2: toosmooth/so-redis:test2:
docker_image.present docker_image.present
so-redisimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-redis:HH1.0.7
so-redis: so-redis:
docker_container.running: docker_container.running:
- require:
- so-redisimage
- image: soshybridhunter/so-redis:HH1.0.7 - image: soshybridhunter/so-redis:HH1.0.7
- hostname: so-redis - hostname: so-redis
- user: socore - user: socore

3
salt/soctopus/init.sls
View File

@@ -18,8 +18,7 @@ soctopussync:
# - name: docker pull --disable-content-trust=false so-soctopus:HH1.0.8 # - name: docker pull --disable-content-trust=false so-soctopus:HH1.0.8
so-soctopus: so-soctopus:
docker_container.run: docker_container.running:
- onlyif: docker pull --disable-content-trust=false soshybridhunter/so-soctopus:HH1.0.9
- image: soshybridhunter/so-soctopus:HH1.0.9 - image: soshybridhunter/so-soctopus:HH1.0.9
- hostname: soctopus - hostname: soctopus
- name: so-soctopus - name: so-soctopus

6
salt/suricata/init.sls
View File

@@ -70,8 +70,14 @@ suriconfigsync:
- group: 940 - group: 940
- template: jinja - template: jinja
so-suricataimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-suricata:HH1.0.8
so-suricata: so-suricata:
docker_container.running: docker_container.running:
- require:
- so-suricataimage
- image: soshybridhunter/so-suricata:HH1.0.8 - image: soshybridhunter/so-suricata:HH1.0.8
- privileged: True - privileged: True
- environment: - environment:

6
salt/wazuh/init.sls
View File

@@ -56,8 +56,14 @@ wazuhagentregister:
- mode: 755 - mode: 755
- template: jinja - template: jinja
so-wazuhimage:
cmd.run:
- name: docker pull --disable-content-trust=false soshybridhunter/so-wazuh:HH1.0.7
so-wazuh: so-wazuh:
docker_container.running: docker_container.running:
- require:
- so-wazuhimage
- image: soshybridhunter/so-wazuh:HH1.0.7 - image: soshybridhunter/so-wazuh:HH1.0.7
- hostname: {{HOSTNAME}}-wazuh-manager - hostname: {{HOSTNAME}}-wazuh-manager
- name: so-wazuh - name: so-wazuh