CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-10 03:02:58 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,670 Commits 26 Branches 119 Tags
04d2b523060d340c6031ae3f09bca0c1d73affd7
Commit Graph

8670 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mike Reeves
b3e5319806 Merge pull request #6028 from Security-Onion-Solutions/telecluster 
Enable cluster stats
 2021-10-27 16:37:42 -04:00
Mike Reeves
c8c8cf203f Enable cluster stats 2021-10-27 15:44:52 -04:00
Josh Patterson
19056b9177 Merge pull request #6027 from Security-Onion-Solutions/issue/5955 
Issue/5955
 2021-10-27 15:07:22 -04:00
William Wernert
75490a2536 Fix typo 2021-10-27 14:59:24 -04:00
William Wernert
eee612e73d Make folder/file states explicit 
Rather than using /nsm/zeek (max_depth: 1) create explicit states for /nsm/zeek/spool and /nsm/zeek/spool/state.db that set correct ownership
 2021-10-27 11:43:09 -04:00
William Wernert
9e9079f9cb Reorder airgap prompt and add additional logic 
Setup should now only ask the user whether to setup as airgap on manager-type installs. For all distributed minions setup will now inherit the airgap boolean from the manager.
 2021-10-27 11:03:00 -04:00
William Wernert
331801eec2 Merge branch 'dev' into foxtrot 2021-10-27 10:58:16 -04:00
William Wernert
a0216cea57 Merge pull request #6021 from Security-Onion-Solutions/fix/update-mysql-root-user 
Update ip for root user in mysql when running so-ip-update
 2021-10-27 10:55:11 -04:00
m0duspwnens
e7f43cff5e limit nodes that bind filebeat certs in so-logstash 2021-10-27 10:45:10 -04:00
William Wernert
90d473f2d6 Update ip for root user in mysql when running so-ip-update 2021-10-27 10:42:33 -04:00
m0duspwnens
bf403a8307 only manager nodes get cert, key and att&ck binds 2021-10-27 09:47:12 -04:00
m0duspwnens
58d62f29ea include ssl state in registry state 2021-10-26 11:55:47 -04:00
Mike Reeves
bcf03773c0 Merge pull request #6009 from Security-Onion-Solutions/stenoports 
Remove port bindings for steno
 2021-10-26 10:58:11 -04:00
m0duspwnens
c0dd9efd9b change so-thehive-es binds and requires 2021-10-26 10:50:16 -04:00
m0duspwnens
36ae07b78e change timeout from 60 to 120 2021-10-26 10:49:50 -04:00
Mike Reeves
d77328608e Remove port bindings for steno 
Steno runs in host mode so port bindings are not required
 2021-10-26 10:23:33 -04:00
m0duspwnens
682cbfd223 remove the mode 2021-10-26 09:23:24 -04:00
m0duspwnens
fa2edb2b59 make cortex_init and hive_init time out after 1 minutes vs 5 minutes 2021-10-26 08:39:30 -04:00
m0duspwnens
0c679b62b2 Merge remote-tracking branch 'remotes/origin/dev' into issue/5955 2021-10-25 16:29:41 -04:00
m0duspwnens
7e8d74e770 just use mode 2021-10-25 15:50:27 -04:00
m0duspwnens
9a78d13bee change perms on mysql 2021-10-25 15:37:23 -04:00
Jason Ertel
c469d12a49 Merge pull request #6002 from Security-Onion-Solutions/kilo 
Update whiptail links to use latest docs
 2021-10-25 15:08:31 -04:00
Jason Ertel
d5f42e0d7c Update whiptail links to use latest docs 2021-10-25 15:06:42 -04:00
weslambert
926551d398 Merge pull request #5998 from Security-Onion-Solutions/fix/hl_host_name 
Rename HTTP client headers and host
 2021-10-25 13:21:11 -04:00
weslambert
3be0d05eea Update field removal based on HTTP input changes 2021-10-25 13:16:30 -04:00
weslambert
7fa43a276a Rename default headers and host for HTTP input 2021-10-25 13:15:20 -04:00
William Wernert
2bfedbd581 Merge pull request #5996 from Security-Onion-Solutions/fix/escape-node-desc 
Escape single quotes and allow for any character in node description
 2021-10-25 10:53:36 -04:00
William Wernert
dca30146ab Merge branch 'dev' into foxtrot 2021-10-25 10:50:25 -04:00
William Wernert
6e34905b42 Escape single quotes and allow for any character in node description 2021-10-25 10:48:09 -04:00
m0duspwnens
ee7e714f43 change to file_mode 2021-10-22 16:55:23 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
William Wernert
38b16a507b Update ip for root user in mysql when running so-ip-update 2021-10-22 15:29:32 -04:00
William Wernert
17af513692 Escape single quotes and allow for any character in node description 2021-10-22 15:28:37 -04:00
m0duspwnens
283f7296bc fix require 2021-10-22 14:45:22 -04:00
m0duspwnens
9f6407fcb0 fix dupe ids 2021-10-22 14:26:04 -04:00
m0duspwnens
f61400680d fix dupe ids 2021-10-22 14:22:15 -04:00
m0duspwnens
fed8bfac67 more requires on docker containers 2021-10-22 14:10:59 -04:00
William Wernert
62971d8c15 Add Fleet custom hostname to end summary 2021-10-22 11:57:47 -04:00
William Wernert
352e30f9e1 Add CUSTOM_FLEET_HOSTNAME to subjectAltName of fleet.key 
Resolves #4319
 2021-10-22 11:16:29 -04:00
m0duspwnens
451b19dc4d change from file to x509 2021-10-22 09:53:20 -04:00
William Wernert
d5d970672d Merge pull request #5974 from Security-Onion-Solutions/foxtrot 
Add so-deny script + rewrite so-allow to match
 2021-10-21 16:37:05 -04:00
m0duspwnens
f93c6146f5 docker binds requires 2021-10-21 15:24:55 -04:00
weslambert
40dd33affe Merge pull request #5971 from Security-Onion-Solutions/feature/es_templates 
Add .keyword subfield for conflict fields
 2021-10-21 15:07:00 -04:00
William Wernert
f374dcbb58 Check for IP environment variable in so-allow and so-deny 2021-10-21 13:54:06 -04:00
weslambert
77ee1db44c Add .keyword subfield for conflict fields 2021-10-21 12:56:03 -04:00
Josh Patterson
8784d65023 Merge pull request #5967 from Security-Onion-Solutions/issue/5954 
require files before starting soc or kratos
 2021-10-21 11:15:36 -04:00
William Wernert
15fe7512b7 Install lxml during setup and in common state 2021-10-21 10:49:41 -04:00
William Wernert
0beeeb94bf Actually add new so-allow script 2021-10-21 10:48:17 -04:00
m0duspwnens
928aed27c5 require files before starting soc or kratos 2021-10-20 17:04:02 -04:00
William Wernert
387d4d6ad5 Add so-deny script + rewrite so-allow to match so-deny 2021-10-20 16:44:57 -04:00