Derek Ditch
Derek Ditch
Ah, yes. That.
Actually, since `es_node_name` is defined in the group_vars, this should probably use that
@ksanks thanks for filing an issue. Switching back and forth from online to offline has caused issues in the past and the logic to handle that perfectly has proved tricky...
I'm working this so that certificates will be updated when stenographer starts and stenographer listens on all interfaces. This should fix the IP change issue, but will require a restart...
Kafka defaults to aging off old data after 168 hours, which is 7 days. You can override this to a shorter period by setting `kafka_retention` in your config.yml. This value...
Data from bro is written directly to Kafka in json format. Bro also writes to disk in the classic ascii format. If you're running a higher bandwidth sensor, I recommend...
Here's the snippet of code, written in Painless. Note that the string could probably be replaced with a Painless format string which would make this way more readable, I think....
I can actually handle this in a blog post. This is a regression with the way that Suricata bundles `suricata-update` now. In the previous RPM I had those configs dropped....
So, the key item from an NSM perspective is we ensure IPv6 is disabled on the monitor interface for a few reasons: 1. I don't want communication possible with my...
We can probably make a jinja2 filter or ansible module that can round trip using https://pypi.org/project/ruamel.yaml/0.6/