mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 09:12:45 +01:00
33 lines
1.5 KiB
Plaintext
Executable File
33 lines
1.5 KiB
Plaintext
Executable File
{%- set MANAGERIP = salt['pillar.get']('global:managerip', '') %}
|
|
{%- set WAZUH_ENABLED = salt['pillar.get']('global:wazuh', '0') %}
|
|
#!/bin/bash
|
|
local_salt_dir=/opt/so/saltstack/local
|
|
|
|
# Copyright 2014,2015,2016,2017,2018,2019,2020 Security Onion Solutions, LLC
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
# Check if Wazuh enabled
|
|
if [ {{ WAZUH_ENABLED }} ]; then
|
|
WAZUH_MGR_CFG="/nsm/wazuh/etc/ossec.conf"
|
|
if ! grep -q "<white_list>{{ MANAGERIP }}</white_list>" $WAZUH_MGR_CFG ; then
|
|
DATE=`date`
|
|
sed -i 's/<\/ossec_config>//' $WAZUH_MGR_CFG
|
|
sed -i '/^$/N;/^\n$/D' $WAZUH_MGR_CFG
|
|
echo -e "<!--Address {{ MANAGERIP }} added by setup on "$DATE"-->\n <global>\n <white_list>{{ MANAGERIP }}</white_list>\n </global>\n</ossec_config>" >> $WAZUH_MGR_CFG
|
|
echo "Added whitelist entry for {{ MANAGERIP }} in $WAZUH_MGR_CFG."
|
|
echo
|
|
fi
|
|
fi
|