X-Pack is included in free Basic version of Elasticsearch and you should use it. Here are my notes how i configured Elasticsearch, Logstash and Kibana to use X-Pack and SSL.
Tag: security
Send audit logs to Logstash with Filebeat from Centos/RHEL
Install Filebeat Add repositories https://www.elastic.co/guide/en/beats/filebeat/current/setup-repositories.html Install sudo yum install filebeat sudo systemctl enable filebeat Configure Filebeat sudo cp -av /etc/filebeat/filebeat.yml /etc/filebeat/filebeat.yml.default sudo vim /etc/filebeat/filebeat.yml filebeat.inputs: filebeat.config.modules: path: ${path.config}/modules.d/*.yml reload.enabled: false output.logstash: hosts: ["LOGSTASHIP:5044"] processors: - add_host_metadata: ~ - add_cloud_metadata: ~ logging.to_syslog: false logging.to_files: true logging.files: path: "/var/log/filebeat" name: "filebeat.log" keepfiles: 7 sudo filebeat modules enable … Continue reading Send audit logs to Logstash with Filebeat from Centos/RHEL
Qubes 4 Fedora 29 minimal sys-net
https://www.qubes-os.org/doc/templates/fedora-minimal/ Download fedora 29 minimal Run in dom0 [[email protected] ~]$ sudo qubes-dom0-update qubes-template-fedora-29-minimal Update fedora 29 minimal Run in dom0 [[email protected] ~]$ qvm-run -u root fedora-29-minimal xterm bash-4.4# dnf upgrade -y bash-4.4# poweroff Clone fedora 29 minimal template Start Qube manager. Click top left Qubes icon - System tools - Qube manager. Right click fedora-29-minimal … Continue reading Qubes 4 Fedora 29 minimal sys-net
Basic iptables rules
Basic iptables rules with some tips and tricks.
