CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,215 Commits 24 Branches 119 Tags
fe9917ef1c1f4946b66e06b4c5e5ae2ff4bbe07a
Commit Graph

192 Commits

Author SHA1 Message Date
Josh Brower
e844cf11db Move base_url to cert SAN 2023-08-09 16:38:27 -04:00
Josh Brower
1bc7bbc76e Refactor custom_fqdn 2023-08-02 20:02:37 -04:00
Josh Brower
ab28cee7cf Allow multiple Custom Fleet FQDN 2023-08-02 17:45:37 -04:00
Josh Brower
8c16feb772 Rename Fleet pipelines 2023-07-09 12:22:55 -04:00
Josh Brower
ce1f363424 Allow base_url 2023-07-08 13:30:19 -04:00
Josh Brower
e8860a7d2c Fix perms 2023-07-08 09:04:55 -04:00
Josh Brower
beb26596fd Merge remote-tracking branch 'origin/2.4/dev' into 2.4/fleetautogen 2023-07-07 19:12:47 -04:00
Josh Brower
ff3bb11fbb Elastic Fleet Certs Refactor 2023-07-07 16:44:16 -04:00
m0duspwnens
12c82d2812 bits deprecation to keysize 2023-07-06 10:49:32 -04:00
m0duspwnens
b49a296276 we can remove the unless in ssl state since x509_v2 is patched 2023-07-06 09:44:58 -04:00
m0duspwnens
cd1db36c13 add back unless in ssl state 2023-06-29 15:26:16 -04:00
m0duspwnens
34db6fb823 dont need the unless for ssl since using x509v2 now 2023-06-28 15:06:13 -04:00
m0duspwnens
be028aa23e define ca_server for nginx.ssl 2023-06-28 10:58:13 -04:00
m0duspwnens
12cce111db custom crt and key for nginx 2023-06-28 10:28:50 -04:00
Mike Reeves
cb8faf7c5f Fix the rest of the analyst entries 2023-06-26 16:14:04 -04:00
m0duspwnens
469390696e 2.4 receiver changes 2023-06-15 11:04:16 -04:00
m0duspwnens
c49b134122 move so-catrust 2023-05-15 16:43:47 -04:00
m0duspwnens
6320528263 move so-catrust 2023-05-15 14:08:30 -04:00
m0duspwnens
6909d3ed14 move cacertz and capemz to ssl state 2023-05-09 12:16:18 -04:00
Josh Brower
1ab72e9288 Fix cert gen 2023-04-19 10:23:13 -04:00
Josh Brower
36c96c4beb Remove dep vars 2023-04-19 10:02:24 -04:00
Josh Brower
d79ad53daf Merge pull request #10153 from Security-Onion-Solutions/fleet-sa 
FEATURE: Dedicated Fleet Node
 2023-04-19 09:12:30 -04:00
Josh Brower
8cccaef664 mkdirs as needed 2023-04-17 12:28:07 -04:00
Josh Brower
1944d09978 Logstash certs fixup 2023-04-17 11:34:57 -04:00
Josh Brower
a7d282b412 Firewall fixup 2023-04-15 18:33:44 -04:00
m0duspwnens
d83266c546 remove unrecognized keyword arguments 2023-04-04 09:58:44 -04:00
m0duspwnens
6039a1430e x509 changes for salt 3006 2023-04-04 08:55:10 -04:00
Josh Brower
af392681e3 Merge remote-tracking branch 'remotes/origin/2.4/dev' into fleet-sa 2023-04-03 07:27:04 -04:00
Mike Reeves
4944365341 Change the salt dir for elastic fleet 2023-03-17 11:02:02 -04:00
Mike Reeves
12398bdf24 add m2crypto 2023-02-17 13:34:21 -05:00
Mike Reeves
c6919a09da replace centos 2023-02-17 11:26:11 -05:00
Josh Brower
29aa6dceed Add logstash 2023-01-27 07:49:21 -05:00
Josh Brower
334a0d7b1c Start using so-elastic-agent container 2022-09-14 10:33:27 -04:00
Josh Brower
6945596eee Tweak elastic agent ssl gen 2022-09-14 08:10:42 -04:00
Josh Brower
bf14612258 Change out Elastic Fleet certs 2022-09-13 15:58:53 -04:00
Mike Reeves
2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Josh Brower
7a9cb6d110 Initial support - IDH Node 2022-02-07 16:49:11 -05:00
Josh Patterson
a02fb37493 Update init.sls 2022-02-02 09:18:02 -05:00
m0duspwnens
e63f35a223 change to test 2022-01-27 15:19:33 -05:00
m0duspwnens
487ac24306 revert back to getting ca from mine 2021-12-28 11:16:01 -05:00
m0duspwnens
f2adcf4ca5 ensure /etc/pki is created and simplify ca logic for non manager in ssl state 2021-12-28 10:41:57 -05:00
m0duspwnens
a46a876ec6 add managersearch to list 2021-12-16 13:48:41 -05:00
m0duspwnens
841b91e052 exclude elasticsearch and managerssl keys and certs from receiver 2021-12-14 16:05:47 -05:00
m0duspwnens
d94496bb90 remove minio_key and add missing endif 2021-12-09 13:24:20 -05:00
m0duspwnens
c2a952796c Merge remote-tracking branch 'remotes/origin/sans' into issue/6469 2021-12-09 13:13:18 -05:00
Mike Reeves
b92cbb01b3 SSL modifications 2021-12-09 13:13:01 -05:00
m0duspwnens
ecc8594d44 prevent so-receiver from getting extra keys/certs 2021-12-08 13:32:56 -05:00
m0duspwnens
59464af10c filebeat certs for logstash on so-receiver 2021-12-08 09:41:17 -05:00
m0duspwnens
1ef63f3a23 ssl things for so-receiver 2021-12-08 09:08:46 -05:00
Dustin Lee
8a394380cb add subjectAltName to filebeat.crt 
IP SAN is required for Endgame integration w/Logstash when DNS resolution is unavailable
 2021-11-30 16:24:08 -05:00