Merge pull request #8825 from Security-Onion-Solutions/config

resolve inode issue with soc_users_roles when deleting a user; other minor improvements
2025-12-06 17:22:49 +01:00 · 2022-09-27 17:38:20 -04:00
parent 16d24d4bc9 5708f3595e
commit fe62744c05
4 changed files with 8 additions and 3 deletions
--- a/salt/common/tools/sbin/so-user
+++ b/salt/common/tools/sbin/so-user
@@ -573,7 +573,7 @@ function deleteUser() {
  rolesTmpFile="${socRolesFile}.tmp"
  createFile "$rolesTmpFile" "$soUID" "$soGID"
  grep -v "$identityId" "$socRolesFile" > "$rolesTmpFile"
-  mv "$rolesTmpFile" "$socRolesFile"
+  cat "$rolesTmpFile" > "$socRolesFile"
 }

 case "${operation}" in
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1,5 +1,6 @@
 soc:
  logFilename: /opt/sensoroni/logs/sensoroni-server.log
+  logLevel: info
  actions:
    - name: actionHunt
      description: actionHuntHelp
--- a/salt/soc/files/bin/salt-relay.sh
+++ b/salt/soc/files/bin/salt-relay.sh
@@ -109,7 +109,7 @@ function manage_user() {
  esac

  if [[ exit_code -eq 0 ]]; then
-    log "Successful command execution"
+    log "Successful command execution: $response"
    $(echo "true" > "${SOC_PIPE}")
  else
    log "Unsuccessful command execution: $response ($exit_code)"
@@ -150,7 +150,7 @@ function manage_salt() {
  esac

  if [[ exit_code -eq 0 ]]; then
-    log "Successful command execution"
+    log "Successful command execution: $response"
    $(echo "true" > "${SOC_PIPE}")
  else
    log "Unsuccessful command execution: $response ($exit_code)"
--- a/salt/soc/soc_soc.yaml
+++ b/salt/soc/soc_soc.yaml
@@ -1,4 +1,8 @@
 soc:
+  logLevel:
+    description: The SOC log level, useful for enabling debug logging for advanced troubleshooting. Allowed values are debug, info, warn, error. The SOC log is available at /opt/so/log/soc/sensoroni-server.log.
+    global: True
+    regex: (info|debug|warn|error)
  files:
    soc:
      banner__md: