Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

2.4/dev #12357

Merged
merged 87 commits into from
Feb 15, 2024
Merged

2.4/dev #12357

merged 87 commits into from
Feb 15, 2024

Conversation

defensivedepth
Copy link
Contributor

No description provided.

defensivedepth and others added 30 commits January 28, 2024 10:12
@defensivedepth
Sync Elastic Agent Artifacts
cfc33b1
@defensivedepth
Enable nginx on Fleet Node
1847e5c
@defensivedepth
update artifacts URL automatically
afa98fa
@defensivedepth
Finalize script
0d08bb0
@petiepooo
also remove intca symlink
1192dbd 
The symlink is created in init.sls; it should be removed here.
@weslambert
Custom pipelines
cd4bd64
@weslambert
Custom pipelines in UI
bc75be9
@weslambert
Custom pipeline configuration
1853dc3
@weslambert
Custom pipeline configuration in UI
4672a5b
@defensivedepth
switch to symlink
0fe96bf
@m0duspwnens
use different nginx defaults for so-fleet node hosting artifacts
2f03248
@m0duspwnens
add fleet node nginx to docker annotations
ae32ac4
@weslambert
Custom Elasticserach pipeline annotations
bc502cc
@weslambert
Custom Logstash pipeline annotations
136097f
@weslambert
Change numbers for Elasticsearch
182667b
@weslambert
Change numbers for Logstash
1818e13
@weslambert
Merge pull request #12297 from Security-Onion-Solutions/feature/pipel…
91c1e59 
…ine_config_ui

Manage custom Elasticsearch and Logstash pipelines in UI
@defensivedepth
Refactor script
e090518
@defensivedepth
Merge pull request #12294 from Security-Onion-Solutions/jppffa
3d478b9 
Jppffa
@m0duspwnens
upgrade salt3006.6
0d5db58
@m0duspwnens
Merge remote-tracking branch 'origin/2.4/dev' into salt3006.6
61ee41e
@petiepooo
call salt before stopping salt services
7a29b3a 
salt-call does not work when the salt-master is not running.  If these calls are to succeed, they should occur before the salt services are stopped.
@petiepooo
feat: use mountpoint for Elastic log limit
cf83d1c 
Instead of just existence, this checks if the directories are separate mountpoints when determining disk size and log_size_limit calculations.

It also sets the percentage to 80 if /nsm/elasticsearch is a separate mountpoint.  This allows for better disk utilization on server configurations where /nsm is based on large slow HDDs for increased PCAP retention but /nsm/elasticsearch is based on SSDs for faster Elasticsearch performance.
@m0duspwnens
add append to list
2643ae0
@m0duspwnens
update so-yaml tests
9d62ade
@dougburks
FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315
7106095
@dougburks
Merge pull request #12316 from Security-Onion-Solutions/feature/impro…
d800d59 
…ve-soc-actions

FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315
@m0duspwnens
update so-yaml tests
b3f6153
@m0duspwnens
uopdate error message
24fd3ef
@m0duspwnens
add /opt/so/rules/ to files_roots
f97d0f2
defensivedepth and others added 28 commits February 12, 2024 19:07
@defensivedepth
Merge pull request #12349 from Security-Onion-Solutions/2.4/conflicti…
64726a2 
…ngfix

Fix conflicting id
@dougburks
Update Sublime action in defaults.yaml to use i18n
20d2f3b
@dougburks
FEATURE: Add new SOC action to show process ancestry #12345
0ad39a7
@dougburks
Merge pull request #12350 from Security-Onion-Solutions/feature/proce…
d072d43 
…ss-ancestry-action

FEATURE: Add new SOC action to show process ancestry #12345
@m0duspwnens
modify soup to update soup scripts without using salt
3efaba1
@m0duspwnens
move rm
9263472
@m0duspwnens
Merge remote-tracking branch 'origin/2.4/dev' into 2450soup
c1258f9
@dougburks
Add table columns to process dashboard in defaults.yaml
8060751
@m0duspwnens
add back common soup_scripts state
b713771
@m0duspwnens
copy with cp
5c9b1ab
@m0duspwnens
comment out script copy in soup
d7f853b
@dougburks
Update defaults.yaml
0741ae3
@m0duspwnens
update case
1bde002
@dougburks
Merge pull request #12355 from Security-Onion-Solutions/dougburks-pat…
14209ad 
…ch-1

Add table columns to process dashboard in defaults.yaml
@m0duspwnens
dont need $ for vars
9175a73
@m0duspwnens
fix the jinja
d6ac7a3
@m0duspwnens
fix copy
7112337
@m0duspwnens
use rsync
141fd49
@m0duspwnens
use file.copy to preserve perms
88786e8
@m0duspwnens
add soup script update retru
468eedf
@m0duspwnens
fix path for so-firewall
00f2374
@m0duspwnens
add back comment
2e9fa24
@m0duspwnens
Merge pull request #12354 from Security-Onion-Solutions/2450soup
cf6266a 
modify soup to update soup scripts using salt
@m0duspwnens
pass in UPDATE_DIR as a pillar
79e98e5
@m0duspwnens
Merge remote-tracking branch 'origin/2.4/dev' into 2450soup
7d5932e
@m0duspwnens
handle airgap
c1f467a
@m0duspwnens
move jinja to top
a2b17d2
@m0duspwnens
Merge pull request #12360 from Security-Onion-Solutions/2450soup
0765320 
`2450soup
@defensivedepth defensivedepth merged commit 686304f into kilo Feb 15, 2024
3 checks passed
@github-actions github-actions bot locked and limited conversation to collaborators Feb 15, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@defensivedepth @petiepooo @weslambert @m0duspwnens @dougburks @reyesj2 @TOoSmOotH