CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-08 04:18:04 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
ee89b78751b2cc4117ec9507ed82c5da14b0f0cd
securityonion/salt
T
History
Mike Reeves ee89b78751 Fire telegraf user sync on salt/key accept, not salt/auth 
salt/auth fires on every minion authentication — including every minion
restart and every master restart — so the reactor was re-running the
postgres.auth + postgres.telegraf_users + telegraf orchestration for
every already-accepted minion on every reconnect. The underlying states
are idempotent, so this was wasted work and log noise, not a correctness
issue.

Switch the subscription to salt/key, which fires only when the master
actually changes a key's state (accept / reject / delete). Match the
pattern used by salt/reactor/check_hypervisor.sls (registered in
salt/salt/cloud/reactor_config_hypervisor.sls) and add the result==True
guard so half-failed key operations don't trigger the orchestration.
2026-04-20 19:54:06 -04:00
..
_beacons
remove unneeded files
2025-05-30 12:50:59 -04:00
_modules
Remove non-Oracle Linux 9 support from salt states
2026-03-16 16:58:39 -04:00
_runners
merge 2.4/dev
2025-12-02 11:16:08 -06:00
backup
Harden postgres secrets, TLS enforcement, and admin tooling
2026-04-20 12:36:17 -04:00
bpf
update helpLink references for new documentation
2026-03-18 09:46:45 -04:00
ca
Add so-postgres Salt states and integration wiring
2026-04-08 10:58:52 -04:00
common
Fix Telegraf→Postgres table creation and state.apply race
2026-04-17 13:00:12 -04:00
cron
desktop
the great ssl refactor
2025-12-11 17:30:06 -05:00
docker
Add so-postgres Salt states and integration wiring
2026-04-08 10:58:52 -04:00
docker_clean
allow states for desktop. give all nodes docker_clean, order it last
2023-09-01 09:39:39 -04:00
elastalert
new elastalert options advanced
2026-03-19 17:19:42 -04:00
elastic-fleet-package-registry
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
elasticagent
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
elasticfleet
enable elastic agent patch release for 9.3.3
2026-04-13 16:27:28 -05:00
elasticsearch
add wait_for_so-elasticsearch state and split elasticsearch cluster configuration out of enabled.sls
2026-04-17 14:43:07 -05:00
firewall
Use TELEGRAFMERGED for telegraf.output and de-jinja pg_hba.conf
2026-04-20 16:06:01 -04:00
global
Move telegraf_output from global pillar to telegraf pillar
2026-04-20 16:03:02 -04:00
healthcheck
host
update helpLink references for new documentation
2026-03-18 09:46:45 -04:00
hydra
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
hypervisor
merge 2.4/dev
2025-12-02 11:16:08 -06:00
idh
Remove hardcoded path
2026-03-23 16:26:56 -04:00
influxdb
define options in annotation files
2026-04-09 10:18:36 -04:00
kafka
define options in annotation files
2026-04-09 10:18:36 -04:00
kibana
ES 9.3.2
2026-04-06 15:08:30 -05:00
kratos
define options in annotation files
2026-04-09 10:18:36 -04:00
libvirt
create libvirt volumes directory
2025-10-30 11:02:36 -04:00
logrotate
remove steno
2026-03-06 15:45:36 -05:00
logstash
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
manager
Fix soup state.apply args for postgres provisioning
2026-04-20 14:40:32 -04:00
motd
FIX: Update MOTD #13317
2024-07-09 10:06:16 -04:00
nginx
Merge pull request #15658 from Security-Onion-Solutions/jertel/wip
2026-03-23 09:55:31 -04:00
ntp
update helpLink references for new documentation
2026-03-18 09:46:45 -04:00
orch
Add telegraf_output selector for InfluxDB/Postgres dual-write
2026-04-15 14:32:10 -04:00
patch
ensure bool sliders for patch
2026-03-19 14:39:10 -04:00
pcap
cleanup steno. sensor run pcap.cleanup
2026-03-10 16:09:32 -04:00
pipeline
postgres
Flesh out soc_postgres.yaml annotations
2026-04-20 16:36:37 -04:00
reactor
Fire telegraf user sync on salt/key accept, not salt/auth
2026-04-20 19:54:06 -04:00
redis
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
registry
ensure bool sliders for each state:enabled annotation
2026-03-19 12:35:38 -04:00
repo/client
Remove non-Oracle Linux 9 support from salt states
2026-03-16 16:58:39 -04:00
salt
Fire telegraf user sync on salt/key accept, not salt/auth
2026-04-20 19:54:06 -04:00
sensor
update helpLink references for new documentation
2026-03-18 09:46:45 -04:00
sensoroni
ensure bool sliders sensoroni
2026-03-19 14:41:49 -04:00
setup/virt
handle - in hypervisor hostname
2025-08-04 15:25:26 -04:00
soc
Harden postgres secrets, TLS enforcement, and admin tooling
2026-04-20 12:36:17 -04:00
ssl
dont remove ca in ssl.remove
2026-01-07 14:14:57 -05:00
stig
update stig profile v1r3
2026-03-23 14:04:48 -05:00
storage
remove .log extension
2025-10-14 11:03:00 -04:00
strelka
ensure bool sliders strelka
2026-03-19 14:46:49 -04:00
suricata
define options in annotation files
2026-04-09 10:18:36 -04:00
systemd
tcpreplay
telegraf
Move telegraf_output from global pillar to telegraf pillar
2026-04-20 16:03:02 -04:00
utility
vars
Move telegraf_output from global pillar to telegraf pillar
2026-04-20 16:03:02 -04:00
versionlock
update helpLink references for new documentation
2026-03-18 09:46:45 -04:00
vm
handle - in hypervisor hostname
2025-08-04 15:25:26 -04:00
zeek
Fix JA4+ license link in soc_zeek.yaml
2026-04-06 10:12:37 -04:00
allowed_states.map.jinja
Add postgres.auth to allowed_states
2026-04-09 12:39:46 -04:00
schedule.sls
splay highstate schedule 2minutes for non managers
2025-07-22 11:52:50 -04:00
top.sls
Add so-postgres Salt states and integration wiring
2026-04-08 10:58:52 -04:00