CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-19 15:33:06 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,397 Commits 18 Branches 120 Tags
2ffb723bbd77c3669687b13a42d8029e8b2d98a7
Commit Graph

4922 Commits

Author SHA1 Message Date
Jason Ertel
e427f8178d Implement locking to so-firewall script 2021-02-04 16:06:11 -05:00
Jason Ertel
a13b31fbcc Merge branch 'dev' into automation/ami 2021-02-04 16:05:39 -05:00
Jason Ertel
58e4205602 Revert "Make filebeat retry forever" 2021-02-03 21:46:29 -05:00
Jason Ertel
6b54a29ac7 Remove 'new user' references from so-user 2021-02-03 15:23:58 -05:00
Jason Ertel
3ebedcd4e8 Merge pull request #2830 from Security-Onion-Solutions/filebeatlimits 
Make filebeat retry forever
 2021-02-03 11:32:05 -05:00
Mike Reeves
55a8f6aa7a Make filebeat retry forever 2021-02-02 16:41:52 -05:00
William Wernert
8f0b0ac936 Merge pull request #2825 from Security-Onion-Solutions/foxtrot 
Setup: dpkg retry, whiptail changes, fix zeek state condition
 2021-02-02 14:41:48 -05:00
m0duspwnens
b3c08229db Merge remote-tracking branch 'remotes/origin/sslstate/timeouts_retry' into delta 2021-02-01 15:33:31 -05:00
m0duspwnens
8cf0a3da98 remove seconds 2021-02-01 15:19:47 -05:00
William Wernert
8d01b87ab5 Merge branch 'dev' into foxtrot 2021-02-01 13:56:33 -05:00
m0duspwnens
8ff6d1639a Merge remote-tracking branch 'remotes/origin/dev' into issue/1191 2021-02-01 12:51:00 -05:00
William Wernert
daebe90b6e [fix] fix retry command handling 
* use eval "$cmd" to handle strings correctly
* add-apt-repo doesn't need dpkg lock so don't use retry for those lines
 2021-02-01 12:06:19 -05:00
William Wernert
44617fdddf [fix] Run command being retried within quotes 2021-02-01 11:28:28 -05:00
William Wernert
36ce389202 Remove wait_for_apt, use common retry function to run apt commands 2021-02-01 10:55:14 -05:00
Mike Reeves
160d307f4a Disable ML for features #2788 2021-01-30 20:00:41 -05:00
Mike Reeves
4212afe0c9 Add features option back 2021-01-30 19:57:18 -05:00
m0duspwnens
0ea504c16a remove space 2021-01-29 17:32:48 -05:00
m0duspwnens
8ca15a6679 Merge remote-tracking branch 'remotes/origin/dev' into issue/1191 2021-01-29 16:54:26 -05:00
Mike Reeves
22e6e45667 Remove other changes 2021-01-29 16:14:14 -05:00
Mike Reeves
18f2c7b482 Raid Setup for Appliances 2021-01-29 16:03:18 -05:00
m0duspwnens
618b94b9b6 add newline 2021-01-29 15:31:05 -05:00
m0duspwnens
f50a89a0cf watch elastalert config and restart docker if chagnes 2021-01-29 15:28:59 -05:00
m0duspwnens
e6ecd609cc change timeouts to 30s 2021-01-29 13:44:11 -05:00
Jason Ertel
2926527ad0 Place sig keys in same dir as other sig files 2021-01-29 13:21:58 -05:00
Jason Ertel
73909c4dea Place sig keys in same dir as other sig files 2021-01-29 13:00:56 -05:00
Jason Ertel
c055427e40 Add support for image key/sig retries 2021-01-29 11:18:06 -05:00
m0duspwnens
0936dbdb1c add timeouts and retries to ca/ssl states 2021-01-28 11:40:31 -05:00
m0duspwnens
b7aef32eeb fix missing } 2021-01-27 15:50:23 -05:00
m0duspwnens
8df9e020ac pillarize elastalert https://github.com/Security-Onion-Solutions/securityonion/issues/1191 2021-01-27 15:35:29 -05:00
Josh Brower
13ab4c66eb Update Osquery Windows Eventlog Parsing 2021-01-27 09:15:54 -05:00
William Wernert
f5c044e3e3 [fix] Log directory fixes 
* The playbook log dir is owned by the socore group, so we can use `su root socore`
* Addresses https://github.com/Security-Onion-Solutions/securityonion/pull/2681#issuecomment-767761670
---
* influxdb runs as root, so we can set the log directory permissions to 755 for this service
 2021-01-26 16:07:34 -05:00
William Wernert
1939fe85d7 [fix] Revert directory permission changes 2021-01-26 13:41:10 -05:00
Mike Reeves
3b1cea94d1 Merge branch 'dev' into telegraf3 2021-01-25 19:36:49 -05:00
Mike Reeves
4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
m0duspwnens
944817732b grep for the scrip to be running https://github.com/Security-Onion-Solutions/securityonion/issues/2722 2021-01-25 15:22:04 -05:00
Masaya-A
995d618ff5 Add cron.absent to remove old cron job if present 2021-01-25 15:45:33 +09:00
William Wernert
59a4b148bc Merge branch 'dev' into logrotate-fix 2021-01-22 15:20:55 -05:00
William Wernert
2159914742 Merge pull request #2708 from Security-Onion-Solutions/bugfix/telegraf-zombie-procs 
Bugfix/telegraf zombie procs
 2021-01-22 15:20:09 -05:00
Jason Ertel
47d69bbc9e Move from quay.io to ghcr.io 2021-01-22 13:53:49 -05:00
William Wernert
7273c8a066 [fix] Also rotate stenographer log as per #2681 2021-01-22 12:46:21 -05:00
William Wernert
4079f8a8e8 [fix] Telegraf doesn't clean up zombie processes, use init flag to fix this 2021-01-22 12:23:09 -05:00
William Wernert
f1781b1fde [fix] Set timeout for scripts (15s, 3x default 5s) 2021-01-22 12:15:29 -05:00
Jason Ertel
537f7529f8 Increase Kibana wait from 3 minutes to 15 minutes due to the longer init time needed for Kibana to start (because of the recent ES changes) 2021-01-22 10:09:15 -05:00
Masaya-A
249651edc7 Delete suri-rotate.conf 2021-01-22 10:08:23 +09:00
Masaya-A
e0bbc8cc51 Delete surirotate 2021-01-22 10:08:07 +09:00
Masaya-A
f156106e57 Update salt/common/files/log-rotate.conf 
Co-authored-by: William Wernert <william.wernert@gmail.com>
 2021-01-22 09:29:08 +09:00
Masaya-A
bcdf826204 Update init.sls 2021-01-22 09:26:52 +09:00
Mike Reeves
636687ac59 Merge pull request #2702 from Security-Onion-Solutions/essecurity 
SSL with Elastic Basic license. Remove features option.
 2021-01-21 13:57:28 -05:00
Mike Reeves
9408d62c65 Remove features 2021-01-21 13:55:53 -05:00
Mike Reeves
f85ecf254e Fix dupe 2021-01-21 13:21:08 -05:00