Skip to content
This repository has been archived by the owner on Apr 16, 2021. It is now read-only.

NSM scripts are storing initial Sguil credentials in /etc/nsm/securityonion/server.conf #159

Closed
GoogleCodeExporter opened this issue Mar 24, 2015 · 2 comments
Closed

NSM scripts are storing initial Sguil credentials in /etc/nsm/securityonion/server.conf #159

GoogleCodeExporter opened this issue Mar 24, 2015 · 2 comments
Labels
auto-migrated Priority-Medium Type-Defect

Comments

@GoogleCodeExporter
Copy link 

Added the following to security-onion-upgrade.sh:

        FILE="/etc/nsm/securityonion/server.conf"
        if [ -f $FILE ]
        then
                echo "* Removing credentials from $FILE"                | $LOGGER
                sed -i '/SERVER_SGUIL_USER=/d' $FILE                    | $LOGGER
                sed -i '/SERVER_SGUIL_PASS=/d' $FILE                    | $LOGGER
        fi

Original issue reported on code.google.com by doug.bu...@gmail.com on 1 Dec 2011 at 11:04
@GoogleCodeExporter
Copy link
Author 

Updated /usr/local/sbin/nsm_server_add to no longer write Sguil credentials to 
/etc/nsm/securityonion/server.conf.  

Built new securityonion-nsmnow-admin-scripts DEB using the following command:
/var/lib/gems/1.8/bin/fpm -s dir -t deb -n securityonion-nsmnow-admin-scripts 
-v 20111201 /etc/init.d/nsm* /usr/share/nsmnow/ /usr/local/sbin/nsm* 
/usr/local/lib/nsmnow/ /etc/cron.d/sensor-newday

Original comment by doug.bu...@gmail.com on 1 Dec 2011 at 11:12

  • Added labels: ****
  • Removed labels: ****

@GoogleCodeExporter
Copy link
Author 

Published:
http://securityonion.blogspot.com/2011/12/security-onion-20111201-now-available.
html

Original comment by doug.bu...@gmail.com on 1 Dec 2011 at 11:26

  • Changed state: Verified
  • Added labels: ****
  • Removed labels: ****

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
auto-migrated Priority-Medium Type-Defect
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@GoogleCodeExporter