Ludovic · @usul
520 followers · 5738 posts · Server piaille.fr
Slow Query Logging for Elasticsearch and Elastic Cloud
https://xeraa.net/blog/2020_slow-query-logging-elasticsearch-elastic-cloud/
#elastic #cloud #elasticsearch #log #slow #query #index #kibana #ui #filebeat #module
#elastic #cloud #elasticsearch #log #slow #query #index #kibana #ui #filebeat #module
MrRoubos · @MrRoubos
127 followers · 925 posts · Server mastodon.nlI think it is amazing when I try to configure #rsyslog to accept #tls via #gtls via #imtcp with #certs on a #ubuntu server. Then when I configure a rsyslog client without any certs configuration, I see this loglines on the rsyslog with certs passing. Weird. Next attempt is to deliver from rsyslog with certs to #logstash with certs. As last option switch to #filebeat
#filebeat #logstash #ubuntu #certs #imtcp #gtls #tls #rsyslog
Jorge · @xurxosanz
511 followers · 386 posts · Server mastodon.socialDec 23rd, 2022: [pt_BR] IoT, coletando dados de um drone em tempo real
#filebeat #mqtt #drone #elasticsearch #kibana #canvas https://buff.ly/3jrVgFR
#filebeat #mqtt #drone #elasticsearch #kibana #canvas
Seth Grover :heart_cyber: :terminal: :d20: · @mmguero
86 followers · 117 posts · Server infosec.exchange
#Malcolm v6.4.3 is a minor #release containing enhancements, component version updates and bug fixes.
Enhancements
- Import the NetBox Device Type Library on NetBox first run to populate manufacturers, device types, models and modules
- idaholab/Malcolm#127 have
install.py --configureask about other storage locations for PCAP, Zeek logs and OpenSearch indices - idaholab/Malcolm#128 have
install.py --configureprompt for Arkime to manage uploaded PCAP files or not
Component version updates
Fixes
- Fix some bad links in the documentation and other minor documentation improvements
- Fix idaholab/Malcolm#126, suricata logs show up in Arkime as "notip" for the protocol
- Fix idaholab/Malcolm#129, filtering by rootId in Arkime returns no results
- Fix Docker health checks for NetBox and supporting containers
- Fix "read-only" version of nginx.conf
- Tweaks to
install.pymemory recommendations
#Malcolm and #HedgehogLinux may be obtained by pulling or building the #Docker images and/or building the ISO installer images as described in the documentation. Unofficial ISO installer images for Malcolm and Hedgehog Linux are not hosted on #GitHub, but may be downloaded from https://malcolm.fyi/.
#cybersecurity #pcap #networktrafficanalysis #zeek #arkime #ICS #INL #CISAgov
#malcolm #release #alpine #filebeat #netbox #zeek #opensearch #fluentbit #hedgehoglinux #docker #github #cybersecurity #pcap #networktrafficanalysis #arkime #ics #inl #CISAgov
