8596 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
William Wernert	9e9079f9cb	Reorder airgap prompt and add additional logic ... Setup should now only ask the user whether to setup as airgap on manager-type installs. For all distributed minions setup will now inherit the airgap boolean from the manager.	2021-10-27 11:03:00 -04:00
William Wernert	331801eec2	Merge branch 'dev' into foxtrot	2021-10-27 10:58:16 -04:00
William Wernert	a0216cea57	Merge pull request #6021 from Security-Onion-Solutions/fix/update-mysql-root-user ... Update ip for root user in mysql when running so-ip-update	2021-10-27 10:55:11 -04:00
William Wernert	90d473f2d6	Update ip for root user in mysql when running so-ip-update	2021-10-27 10:42:33 -04:00
Mike Reeves	bcf03773c0	Merge pull request #6009 from Security-Onion-Solutions/stenoports ... Remove port bindings for steno	2021-10-26 10:58:11 -04:00
Mike Reeves	d77328608e	Remove port bindings for steno ... Steno runs in host mode so port bindings are not required	2021-10-26 10:23:33 -04:00
Jason Ertel	c469d12a49	Merge pull request #6002 from Security-Onion-Solutions/kilo ... Update whiptail links to use latest docs	2021-10-25 15:08:31 -04:00
Jason Ertel	d5f42e0d7c	Update whiptail links to use latest docs	2021-10-25 15:06:42 -04:00
weslambert	926551d398	Merge pull request #5998 from Security-Onion-Solutions/fix/hl_host_name ... Rename HTTP client headers and host	2021-10-25 13:21:11 -04:00
weslambert	3be0d05eea	Update field removal based on HTTP input changes	2021-10-25 13:16:30 -04:00
weslambert	7fa43a276a	Rename default headers and host for HTTP input	2021-10-25 13:15:20 -04:00
William Wernert	2bfedbd581	Merge pull request #5996 from Security-Onion-Solutions/fix/escape-node-desc ... Escape single quotes and allow for any character in node description	2021-10-25 10:53:36 -04:00
William Wernert	dca30146ab	Merge branch 'dev' into foxtrot	2021-10-25 10:50:25 -04:00
William Wernert	6e34905b42	Escape single quotes and allow for any character in node description	2021-10-25 10:48:09 -04:00
William Wernert	38b16a507b	Update ip for root user in mysql when running so-ip-update	2021-10-22 15:29:32 -04:00
William Wernert	17af513692	Escape single quotes and allow for any character in node description	2021-10-22 15:28:37 -04:00
William Wernert	62971d8c15	Add Fleet custom hostname to end summary	2021-10-22 11:57:47 -04:00
William Wernert	352e30f9e1	Add CUSTOM_FLEET_HOSTNAME to subjectAltName of fleet.key ... Resolves #4319	2021-10-22 11:16:29 -04:00
William Wernert	d5d970672d	Merge pull request #5974 from Security-Onion-Solutions/foxtrot ... Add so-deny script + rewrite so-allow to match	2021-10-21 16:37:05 -04:00
weslambert	40dd33affe	Merge pull request #5971 from Security-Onion-Solutions/feature/es_templates ... Add .keyword subfield for conflict fields	2021-10-21 15:07:00 -04:00
William Wernert	f374dcbb58	Check for IP environment variable in so-allow and so-deny	2021-10-21 13:54:06 -04:00
weslambert	77ee1db44c	Add .keyword subfield for conflict fields	2021-10-21 12:56:03 -04:00
Josh Patterson	8784d65023	Merge pull request #5967 from Security-Onion-Solutions/issue/5954 ... require files before starting soc or kratos	2021-10-21 11:15:36 -04:00
William Wernert	15fe7512b7	Install lxml during setup and in common state	2021-10-21 10:49:41 -04:00
William Wernert	0beeeb94bf	Actually add new so-allow script	2021-10-21 10:48:17 -04:00
m0duspwnens	928aed27c5	require files before starting soc or kratos	2021-10-20 17:04:02 -04:00
William Wernert	387d4d6ad5	Add so-deny script + rewrite so-allow to match so-deny	2021-10-20 16:44:57 -04:00
William Wernert	adf6cb4b3c	Merge branch 'dev' into foxtrot	2021-10-20 16:44:50 -04:00
William Wernert	0ed2ce0766	Fix validation.sh tests	2021-10-20 16:44:09 -04:00
William Wernert	b5cb47e066	Fix sbin perms	2021-10-20 16:43:55 -04:00
Josh Patterson	8061508330	Merge pull request #5961 from Security-Onion-Solutions/issue/5960 ... Issue/5960	2021-10-20 16:08:50 -04:00
m0duspwnens	adffb11800	fix redis port	2021-10-20 15:39:21 -04:00
m0duspwnens	8619af59cc	servers to list format	2021-10-20 15:02:33 -04:00
m0duspwnens	7ecfb55b70	fix pillar call	2021-10-20 14:50:50 -04:00
m0duspwnens	b496810b63	add redis and logstash input plugins to telegraf	2021-10-20 14:46:47 -04:00
Mike Reeves	e1ad02c28d	Merge pull request #5949 from Security-Onion-Solutions/kilo ... Fix Docker-created corruption of SOC user roles file	2021-10-19 18:37:37 -04:00
Jason Ertel	2f8bb5a2a6	Fix Docker-created corruption of SOC user roles file	2021-10-19 16:04:10 -04:00
weslambert	6f3e441bf7	Merge pull request #5945 from Security-Onion-Solutions/fix/soc_index_pattern ... Remove space to allow pattern(s) to be correctly interpreted	2021-10-19 13:05:40 -04:00
Mike Reeves	7f1585dcc0	Merge pull request #5942 from Security-Onion-Solutions/tunesteno ... Fix Steno Math for PL	2021-10-19 13:03:50 -04:00
weslambert	9453ed7fa1	Remove space to allow pattern(s) to be correctly interpreted	2021-10-19 13:01:40 -04:00
Mike Reeves	64f25961b0	Fix Steno Math for PL	2021-10-19 11:15:58 -04:00
Mike Reeves	b9a3d3a6a9	Fix Steno Math for PL	2021-10-19 11:14:02 -04:00
Mike Reeves	00e5b54dda	Merge pull request #5911 from Security-Onion-Solutions/tunesteno ... Add Steno Tuning Options	2021-10-18 09:01:14 -04:00
Mike Reeves	4016b416ec	Merge pull request #5923 from Security-Onion-Solutions/kilo ... Upgrade to ES 7.15.1	2021-10-16 09:15:06 -04:00
weslambert	7590728a0b	Merge pull request #5915 from Security-Onion-Solutions/feature/ti_module ... Add TI module	2021-10-15 17:17:33 -04:00
weslambert	bb36fc1ed8	Add TI module defaults	2021-10-15 17:16:38 -04:00
weslambert	d0a6dafc8b	Add TI module	2021-10-15 17:09:59 -04:00
Mike Reeves	a9f6c84d7c	Add Steno Tuning Options	2021-10-15 14:17:54 -04:00
weslambert	59852841ff	Add keyword subfield for event.module	2021-10-15 13:29:50 -04:00
weslambert	6f1f7d2a63	Merge pull request #5905 from Security-Onion-Solutions/feature/soc_es_index_pattern ... Allow setting ES index patterns for SOC in pillar	2021-10-15 13:28:04 -04:00