CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 14:07:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,368 Commits 40 Branches 125 Tags
3f7cdb933f976cbd01680c4a42c03ecb9ee831a6
Commit Graph

3599 Commits

Author SHA1 Message Date
m0duspwnens 618b94b9b6 add newline 2021-01-29 15:31:05 -05:00
m0duspwnens f50a89a0cf watch elastalert config and restart docker if chagnes 2021-01-29 15:28:59 -05:00
m0duspwnens e6ecd609cc change timeouts to 30s 2021-01-29 13:44:11 -05:00
Jason Ertel 2926527ad0 Place sig keys in same dir as other sig files 2021-01-29 13:21:58 -05:00
Jason Ertel 73909c4dea Place sig keys in same dir as other sig files 2021-01-29 13:00:56 -05:00
Jason Ertel c055427e40 Add support for image key/sig retries 2021-01-29 11:18:06 -05:00
m0duspwnens 0936dbdb1c add timeouts and retries to ca/ssl states 2021-01-28 11:40:31 -05:00
m0duspwnens b7aef32eeb fix missing } 2021-01-27 15:50:23 -05:00
m0duspwnens 8df9e020ac pillarize elastalert https://github.com/Security-Onion-Solutions/securityonion/issues/1191 2021-01-27 15:35:29 -05:00
Josh Brower 13ab4c66eb Update Osquery Windows Eventlog Parsing 2021-01-27 09:15:54 -05:00
William Wernert f5c044e3e3 [fix] Log directory fixes 
* The playbook log dir is owned by the socore group, so we can use `su root socore`
* Addresses https://github.com/Security-Onion-Solutions/securityonion/pull/2681#issuecomment-767761670
---
* influxdb runs as root, so we can set the log directory permissions to 755 for this service
 2021-01-26 16:07:34 -05:00
William Wernert 1939fe85d7 [fix] Revert directory permission changes 2021-01-26 13:41:10 -05:00
Mike Reeves 3b1cea94d1 Merge branch 'dev' into telegraf3 2021-01-25 19:36:49 -05:00
Mike Reeves 4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
m0duspwnens 944817732b grep for the scrip to be running https://github.com/Security-Onion-Solutions/securityonion/issues/2722 2021-01-25 15:22:04 -05:00
Masaya-A 995d618ff5 Add cron.absent to remove old cron job if present 2021-01-25 15:45:33 +09:00
William Wernert 59a4b148bc Merge branch 'dev' into logrotate-fix 2021-01-22 15:20:55 -05:00
William Wernert 2159914742 Merge pull request #2708 from Security-Onion-Solutions/bugfix/telegraf-zombie-procs 
Bugfix/telegraf zombie procs
 2021-01-22 15:20:09 -05:00
Jason Ertel 47d69bbc9e Move from quay.io to ghcr.io 2021-01-22 13:53:49 -05:00
William Wernert 7273c8a066 [fix] Also rotate stenographer log as per #2681 2021-01-22 12:46:21 -05:00
William Wernert 4079f8a8e8 [fix] Telegraf doesn't clean up zombie processes, use init flag to fix this 2021-01-22 12:23:09 -05:00
William Wernert f1781b1fde [fix] Set timeout for scripts (15s, 3x default 5s) 2021-01-22 12:15:29 -05:00
Jason Ertel 537f7529f8 Increase Kibana wait from 3 minutes to 15 minutes due to the longer init time needed for Kibana to start (because of the recent ES changes) 2021-01-22 10:09:15 -05:00
Masaya-A 249651edc7 Delete suri-rotate.conf 2021-01-22 10:08:23 +09:00
Masaya-A e0bbc8cc51 Delete surirotate 2021-01-22 10:08:07 +09:00
Masaya-A f156106e57 Update salt/common/files/log-rotate.conf 
Co-authored-by: William Wernert <william.wernert@gmail.com>
 2021-01-22 09:29:08 +09:00
Masaya-A bcdf826204 Update init.sls 2021-01-22 09:26:52 +09:00
Mike Reeves 636687ac59 Merge pull request #2702 from Security-Onion-Solutions/essecurity 
SSL with Elastic Basic license. Remove features option.
 2021-01-21 13:57:28 -05:00
Mike Reeves 9408d62c65 Remove features 2021-01-21 13:55:53 -05:00
Mike Reeves f85ecf254e Fix dupe 2021-01-21 13:21:08 -05:00
Mike Reeves 9f984036c5 Use the internmediate cert 2021-01-21 13:00:46 -05:00
Mike Reeves b0914fa604 try .p12 2021-01-21 12:46:00 -05:00
Mike Reeves 9759990233 Switch to java key store 2021-01-21 12:29:45 -05:00
Mike Reeves bb523c44e6 Enable features temporarily 2021-01-21 12:19:41 -05:00
Mike Reeves 013b706ce4 Enable http ssl 2021-01-21 12:13:23 -05:00
weslambert 583b65e952 Fix syntax 2021-01-21 11:52:23 -05:00
Mike Reeves 84b75a38a3 Fix error in init.sls for ES 2021-01-21 11:21:04 -05:00
Mike Reeves 6de70ec820 Update docker mappings for ES 2021-01-21 11:12:12 -05:00
Wes Lambert 19d22e1f8a Allow for Filebeat queue/output adjustments via pillar 2021-01-21 15:34:54 +00:00
Mike Reeves 35c741ae63 Turn on Xpack SSL 2021-01-21 09:49:31 -05:00
Wes Lambert 0039877779 Check for port availability for Wazuh and Strelka 2021-01-21 13:29:09 +00:00
Wes Lambert 9a91674688 Add reserved ports file for sysctl 2021-01-21 13:18:22 +00:00
Wes Lambert 74e315841a Modify common to reserve Docker proxy ports 2021-01-21 13:17:16 +00:00
Masaya-A cd5abf924c To make log rotation working 2021-01-21 09:31:15 +09:00
Masaya-A 845ab92d36 To make log rotation working 2021-01-21 09:30:34 +09:00
Josh Patterson 516634ef8d Merge pull request #2691 from Security-Onion-Solutions/issue/2679 
Issue/2679
 2021-01-20 17:41:43 -05:00
m0duspwnens 18217ba38b change so-searchnode role to so-node https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 17:40:02 -05:00
m0duspwnens 6e756b3586 allow heathcheck state for standalone and heavynode 2021-01-20 17:34:53 -05:00
Josh Patterson e7e6243399 Merge pull request #2689 from Security-Onion-Solutions/issue/2679 
Issue/2679
 2021-01-20 15:14:38 -05:00
m0duspwnens 18278a97ac fix salt top formatting 2021-01-20 15:13:55 -05:00