CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-06-12 21:29:16 +02:00
Code Issues Packages Projects Releases Wiki Activity
18,297 Commits 33 Branches 127 Tags
80c39d612cb65d8c10fabdcb76e0a4f886b37bd8
Commit Graph

274 Commits

Author SHA1 Message Date
Mike Reeves 80c39d612c Pin NIC names by MAC via udev (run-once) from the common state 
Add so-nic-pin, which writes by-MAC persistent-net udev rules pinning each
physical NIC to its current name so a kernel upgrade can't renumber the
interfaces Security Onion binds by name (host:mainint, sensor:mainint, bond0).

Gated by the drop file /opt/so/state/nic_names_pinned: run-once on highstate,
and an admin can pre-create the marker to opt out. Wired into common/init.sls
as pin_nic_names, guarded by a matching unless.
 2026-06-11 18:40:43 -04:00
Josh Patterson 94f454c311 cleanup file.absent 2026-03-16 15:57:15 -04:00
Josh Patterson 9878d9d37e handle steno ca certs directory properly 2025-12-12 19:07:00 -05:00
Josh Patterson ac0d6c57e1 create common.grains state and nsm_total grain 2025-10-06 11:52:35 -04:00
Josh Patterson 7aad298720 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-03-31 11:14:47 -04:00
Josh Patterson 8b874e46d0 heavy node exclude so-import-pcap and so-pcap-import 2025-03-31 09:09:15 -04:00
Josh Patterson 44a5b3b1e5 MANAGERHYPE setup is now complete! 2025-03-12 21:05:04 -04:00
Jason Ertel 0047246cf2 reduce stdout verbosity 2025-03-04 10:55:12 -05:00
m0duspwnens a0558ace16 replace: False to remove state warning 2024-10-24 10:33:16 -04:00
Mike Reeves 034315ed85 Turn off console messages 2024-07-23 09:46:51 -04:00
m0duspwnens 3efaba1104 modify soup to update soup scripts without using salt 2024-02-13 11:04:26 -05:00
m0duspwnens 8c1d1c95db check needs_restarting rework 2024-01-16 17:02:27 -05:00
defensivedepth 310a6b4f27 Add kibana curl config 2023-10-24 14:21:01 -04:00
m0duspwnens 66be04e78a remove mariadb 2023-10-03 09:53:40 -04:00
m0duspwnens cd8a74290b hold openssl version 2023-10-02 10:36:17 -04:00
Mike Reeves 1028fb1346 Fix ISO install 2023-07-14 13:17:20 -04:00
Mike Reeves fee4c20912 add OS logic 2023-07-03 15:12:49 -04:00
m0duspwnens 41a4321b03 configure logrotate through soc 2023-06-30 11:26:55 -04:00
Mike Reeves 4497f6561f Salt Defunct Workaround 
This can be removed once they patch salt
 2023-06-20 17:27:02 -04:00
Mike Reeves 7595072e85 Fix some files 2023-05-02 12:15:05 -04:00
Mike Reeves 3d7f2bc691 Fix annotations and file locations 2023-04-27 13:23:53 -04:00
Wes a341f1b7b7 Don't distribute curl configuration to nodes that don't need it 2023-04-20 12:31:50 +00:00
Josh Patterson c8ef8cc88e USER=root no longer needed for so-status cron 2023-04-14 16:18:48 -04:00
Jason Ertel 9bc44c122f Merge pull request #10129 from Security-Onion-Solutions/kilo 
wrong and
 2023-04-14 12:46:11 -04:00
Jason Ertel 1fdd8acd0c wrong and 2023-04-14 12:35:32 -04:00
Jason Ertel dc227df229 Merge pull request #10128 from Security-Onion-Solutions/kilo 
Skip raid state for cloud images
 2023-04-14 10:31:17 -04:00
Jason Ertel ff35a58f3f Skip raid state for cloud images 2023-04-14 10:24:54 -04:00
m0duspwnens 1047462898 add identifiers for all cron.present 2023-04-13 16:25:47 -04:00
m0duspwnens 76ba89c356 fix so-status cron to work with ubuntu 2023-04-13 16:01:43 -04:00
m0duspwnens ad64b873c0 ubuntu changes 2023-04-11 12:58:40 -04:00
Mike Reeves c6919a09da replace centos 2023-02-17 11:26:11 -05:00
m0duspwnens 22fbb953ea create cronjob to run highstate after setup 2023-01-23 14:46:26 -05:00
Mike Reeves bf5df1ac51 Add Strelka Filecheck 2022-11-02 09:57:07 -04:00
m0duspwnens b526532ab6 use global vars in states 2022-10-11 11:57:15 -04:00
Jason Ertel 7d965b5cda Ensure so-status does not get jinjafied 2022-09-19 09:17:06 -04:00
Jason Ertel 9542a5ada2 complete rewrite of so-status 2022-09-16 17:46:52 -04:00
Mike Reeves 2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Doug Burks f7dc5588ae FIX: Update common init.sls to create cron job to write influxdb size for telegraf #7468 2022-03-18 13:13:46 -04:00
m0duspwnens 268e07e2a2 remove jinja from soup scripts 2022-01-24 15:49:55 -05:00
m0duspwnens 389ff1a46d create enable_highstate state to reenable highstate following minion restart if it was previously disabled. same with cron 2022-01-13 09:39:46 -05:00
m0duspwnens 03b9b74ace stop cron before soup upgrades the manager, start cron at the end. add cron state that is in included in common 2022-01-12 16:04:10 -05:00
m0duspwnens beb9a33628 only include curl.config if elasticsearch:auth is enabled 2022-01-10 11:48:16 -05:00
m0duspwnens 291ac7d361 https://github.com/Security-Onion-Solutions/securityonion/issues/6811 2022-01-10 10:36:42 -05:00
William Wernert 9a9d1480de Manage docker group's gid to prevent gid overlap 2021-11-02 10:41:36 -04:00
William Wernert 15fe7512b7 Install lxml during setup and in common state 2021-10-21 10:49:41 -04:00
Mike Reeves 481ffb1cda Fix Grain 2021-09-20 18:12:18 -04:00
Mike Reeves 50b78681f2 Ubuntu 20.04 Support 2021-09-20 17:24:47 -04:00
Mike Reeves 9404cb635d Grid Fixes 2021-08-13 08:48:47 -04:00
m0duspwnens d587120613 set ELASTICCUURL default as curl 2021-06-17 14:42:04 -04:00
Jason Ertel fdab17a3b9 Due to dir ownership restrictions need to run crossthestreams and eval as root 2021-06-06 16:36:35 -04:00