CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 01:02:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,059 Commits 24 Branches 119 Tags
master
Commit Graph

115 Commits

Author SHA1 Message Date
doug
a67a254edc update Copyright year 2023-01-04 12:44:18 -05:00
Jason Ertel
eefcc929c2 Update copyright pattern to match other repos 2022-01-24 10:09:23 -05:00
Jason Ertel
7c22f46a55 Update copyright year for 2022 2022-01-24 09:35:29 -05:00
m0duspwnens
715d3f0e7e dont try to register if state file exists 2022-01-07 16:05:55 -05:00
m0duspwnens
3a86af8de2 quote $API_RESULT 2022-01-07 15:49:53 -05:00
m0duspwnens
7ee913eb1f if /opt/so/conf/wazuh/initial_agent_registration.log doesnt exist, and agent is already registered, touch file and exit 0 to prevent salt error 2022-01-07 15:46:47 -05:00
m0duspwnens
b4b8b91ccd simplify ip logic wazuh-register-agent, mine_interval to 35 minutes 2021-12-16 11:24:35 -05:00
m0duspwnens
2e4ed8062e simplify wazuh agent ip logic 2021-12-16 11:11:01 -05:00
m0duspwnens
8c95d0f36b set ip for wazuh-register-agent and dont apply nginx in setup for receiver 2021-12-07 16:50:41 -05:00
m0duspwnens
429b9cab2f set ip for ossec.conf 2021-12-07 16:22:07 -05:00
Jason Ertel
e549cfdf82 Reign in the Wazuh port check to only complain if a non-Docker process is listening on 55000. 2021-12-02 09:35:13 -05:00
m0duspwnens
02d9b87f66 https://github.com/Security-Onion-Solutions/securityonion/issues/5794 2021-11-10 09:54:51 -05:00
Mike Reeves
4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
weslambert
583b65e952 Fix syntax 2021-01-21 11:52:23 -05:00
Wes Lambert
0039877779 Check for port availability for Wazuh and Strelka 2021-01-21 13:29:09 +00:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
Wes Lambert
f2b677bfcb Reserve port for Wazuh API and check if port is already in use 2021-01-06 15:52:10 +00:00
Jason Ertel
7fb264b4fe Use double quotes around agent key to ensure interpolation 2020-11-24 17:17:50 -05:00
Jason Ertel
d20560385f Remove /nsm/wazuh/etc subdir state since confirmed the Wazuh docker container itself 2020-11-24 16:50:46 -05:00
Jason Ertel
e1147398cc Ensure /nsm/wazuh is owned by ossec 2020-11-24 15:48:46 -05:00
Jason Ertel
ea9bbfd1aa Improve wazuh agent registration with retry logic to wait for manager to become ready 2020-11-24 13:53:20 -05:00
Jason Ertel
1e32a01657 Create symlink before registration otherwise registration script can't save it's state (.log) file into the conf subdir; add more logging output to track down registration failures 2020-11-23 18:36:19 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
weslambert
2911e37b70 Don't sleep if not registering agent 2020-11-05 14:03:08 -05:00
William Wernert
3ac9c43b7b Merge branch 'dev' into feature/setup-idempotency 2020-11-04 12:44:14 -05:00
William Wernert
6169758f4e [fix] 0 -> root so file owner is set correctly 2020-11-03 16:47:59 -05:00
Wes Lambert
7dca988c11 Remove Wazuh API creds after registering intial agent 2020-11-03 14:53:50 +00:00
William Wernert
3648e293a1 [fix] Add -L option to curl to respect redirects 2020-10-26 14:08:52 -04:00
weslambert
968dce0aee Adjust Wazuh logging so we don't log alerts to a separate file and so we don't write a separate log file for non-JSON for archives 2020-10-05 10:03:40 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Jason Ertel
d1641aa0d8 chown /var/ossec dir to match the needful user/group ownership for ossec-agentd 2020-08-03 15:49:21 -04:00
weslambert
c48ba8abaf Re-arrange config 2020-07-29 13:52:12 -04:00
weslambert
9db390023b Increase timeout from 10s to 30s 2020-07-29 13:51:46 -04:00
Wes Lambert
ac5aeb4801 Bump Wazuh version 2020-07-27 13:45:34 +00:00
Wes Lambert
51e27cadc8 Add Wazuh Wazuh symlinks for cpnfig/rules 2020-07-27 12:14:43 +00:00
Wes Lambert
958ee25f6d Move Wazuh from /opt/so/ to /nsm/wazuh 2020-07-27 11:58:12 +00:00
weslambert
e91aa751a7 Change verbiage 2020-07-17 09:38:43 -04:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
5ca3ecf4bd fix reference to master grain 2020-07-09 15:42:39 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
weslambert
987acaeb7b Add Wazuh Authd Port 2020-07-08 09:26:04 -04:00
Mike Reeves
c59096d9bd rename node pillar to elasticsearch 2020-07-07 10:42:12 -04:00
Jason Ertel
d146e65412 Remove pre-creation of dirs in favor of having docker image use correct permissions 2020-06-12 01:24:13 -04:00
Jason Ertel
322bb665a1 fix: chgrp all wazuh subdirs accept for api due to Salt symlink issues 2020-06-11 22:34:08 -04:00
Jason Ertel
57a6e4af41 fix: pre-create directory for ossec-analysisd 2020-06-11 13:36:28 -04:00
Jason Ertel
1a85f26cf8 fix: pre-create directory for ossec-analysisd 2020-06-11 13:35:16 -04:00
Jason Ertel
b26a7541cd fix: Force ossec group on /opt/so/wazuh dir tree to eliminate permission failures 2020-06-11 09:25:09 -04:00
Jason Ertel
e6fcf75181 Re-ordered wazuh setup to avoid agent-service failures due to missing client.keys file; Prepare for user profile settings screen support in reverse proxy 2020-06-02 17:31:51 -04:00