CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,478 Commits 24 Branches 119 Tags
0362afb2601f555d1bcad5ed847493901d6f2bc1
Commit Graph

86 Commits

Author SHA1 Message Date
Josh Brower
97cd679d74 Fix FleetDM nginx errors 2021-12-02 08:17:01 -05:00
Josh Brower
96f427d924 Add so-fleet to cert requirements 2021-11-11 08:45:22 -05:00
Josh Brower
184356618c Add Fleet Standalone Node to manager ssl 2021-11-11 08:28:22 -05:00
m0duspwnens
bf403a8307 only manager nodes get cert, key and att&ck binds 2021-10-27 09:47:12 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
Jason Ertel
3fc26312e0 Remove x-user-id header from unauthenticated proxied requests 2021-09-16 08:52:31 -04:00
Jason Ertel
ceb82cb863 Merge branch 'master' into kilo 2021-07-27 14:40:31 -04:00
Jason Ertel
26741bdb53 Add wss: to CSP for browsers that enforce wss distinctly from other protocols 2021-07-26 10:55:30 -04:00
Jason Ertel
08e75567d4 merge master to kilo 2021-07-22 14:34:24 -04:00
Jason Ertel
74874dfff2 Allow web pages to load blob data 2021-07-21 14:59:33 -04:00
Jason Ertel
0c079edc1a Reverse proxy requests to playbook, soctopus, and nodered 2021-07-08 14:27:16 -04:00
Jason Ertel
4ff85ab0c4 Merge branch 'dev' into kilo 2021-06-02 10:39:51 -04:00
Jason Ertel
c757d21360 Increase default SOC API and ES timeouts from 2m to 5m 2021-06-02 09:38:59 -04:00
Jason Ertel
71032150c5 Add secure HTTP headers to all SO application responses to reduce exposure to browser and other HTTP-related vulnerabilities 2021-05-21 17:27:00 -04:00
Jason Ertel
0195d366cc Add custom banner to login page 2021-03-26 14:44:31 -04:00
Jason Ertel
79dd0d1809 Fix indentation 2021-03-11 11:13:14 -05:00
Jason Ertel
eefa6bb949 feature: Show job owner/submitter. Resolves #2775 2021-03-10 14:44:21 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
Josh Brower
19b36f0468 Fleet standalone redirect fix 2020-11-27 11:43:51 -05:00
m0duspwnens
4436f02f6d fix nginx for non manaager/fleet nodes 2020-11-16 16:46:22 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
William Wernert
6b2ab67c58 [fix] Bump version of navigator json to 3.0 + fix booleans 2020-11-06 08:52:36 -05:00
Jason Ertel
82a7b7e02d Upgrade to Kratos 0.5.3-alpha1 2020-11-03 11:50:25 -05:00
William Wernert
b489fee8b5 Merge pull request #1738 from Security-Onion-Solutions/bugfix/nginx-redirect 
Bugfix/nginx redirect
 2020-10-29 14:33:38 -04:00
William Wernert
91221c4332 [revert] Move proxy_pass back to ip 2020-10-29 10:23:12 -04:00
Jason Ertel
98c669e80b Disable nginx server version and TLSv1.0/TLSv1.1 2020-10-28 14:29:29 -04:00
William Wernert
0aaf8d6d9a [fix] Change 301 to 307 so curl requests work as intended 2020-10-26 16:37:16 -04:00
William Wernert
4662837075 [fix] Revert changes from merging dev 2020-10-26 10:25:16 -04:00
William Wernert
fdb7cb90e3 [wip] Test alt variable usage 2020-10-23 15:36:01 -04:00
William Wernert
73b83584e6 [fix] Remove bad '_' character 2020-10-23 14:32:43 -04:00
William Wernert
6a08086dfa [refactor] Make variable names consistent 2020-10-22 14:10:06 -04:00
William Wernert
6a3e921924 [fix] Fixes for fleet install 2020-10-22 13:09:26 -04:00
William Wernert
79c4f07ff7 [fix] Don't listen on port 80 on all installs 2020-10-22 10:43:24 -04:00
William Wernert
d63358c8f0 [fix] Correct pillar reference + nginx errors 2020-10-20 14:30:06 -04:00
William Wernert
42e285cfbe Merge branch 'dev' into feature/nginx-update 
# Conflicts:
#	salt/nginx/etc/nginx.conf
#	salt/nginx/etc/nginx.conf.so-eval
#	salt/nginx/etc/nginx.conf.so-manager
#	salt/nginx/etc/nginx.conf.so-standalone
 2020-10-19 13:25:46 -04:00
Mike Reeves
af9a19b6e8 Merge pull request #1321 from Security-Onion-Solutions/experimental 
IDS Tools now with Airgap support
 2020-09-10 19:05:16 -04:00
Mike Reeves
53319738c4 Fix Nginx state 2020-09-10 16:56:48 -04:00
Mike Reeves
ef46094b0c Update all nginx configs 2020-09-10 13:55:56 -04:00
Mike Reeves
5d4e8925a3 Add Firewall Logic 2020-09-09 21:16:40 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
01c9f7b2ae merge with dev and resolve conflicts 2020-09-09 16:23:36 -04:00
Mike Reeves
426257443a Final airgap tweaks 2020-09-09 10:54:47 -04:00
Mike Reeves
b2ee757db2 Airgap Time 2020-09-03 10:35:12 -04:00
Mike Reeves
9745191f19 Add Airgap State 2020-09-02 16:17:44 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Jason Ertel
ff5d1cd815 Expand nginx body size limit to 2.5GB to handle 2G PCAPs from sensors 2020-09-01 10:07:28 -04:00
m0duspwnens
e6da423dc3 change reference from manager:url_base to global:url_base - https://github.com/Security-Onion-Solutions/securityonion/issues/1039 2020-08-14 17:55:30 -04:00
Jason Ertel
40b5b96e17 Respond with 403 status code to unauthorized sensor requests 2020-08-13 15:00:49 -04:00
m0duspwnens
b5c9d44d91 nginx config for import node 2020-08-12 11:15:14 -04:00
m0duspwnens
11433b87e6 Merge remote-tracking branch 'remotes/origin/dev' into issue/1049 2020-08-10 16:36:49 -04:00