v5.2.6 development #191
Merged
v5.2.6 development #191
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…to allow easier filtering of docker-compose output)
- don't need to explicitly "convert" all the int/float/whatever fields, the template itself should take care of that - fix the types of zeek.bsap_ip_header.num_msg and zeek.bsap_ip_header.type_name as they were reversed
… number of cores) can lead to out of heap memory errors with the number of pipelines I have
… logstash will start up up; use --preserve flag implemented in elastic/logstash#5224
…file name info from HTTP downloads
…act and load docker images from ISO docker image
mmguero
added a commit
that referenced
this pull request
Jul 18, 2023
Malcolm v23.05.0 Malcolm v23.05.0 is a major release with new features, enhancements, component version updates and bug fixes. IMPORTANT NOTE: Malcolm v23.05.0 has completely changed the way it manages its settings: rather than using environment variables found at the top of the `docker-compose.yml` file, it uses environment variables in `.env` files inside of the `config` directory. The locations of a number of configuration files have also changed. It's not recommended to update to Malcolm v23.05.0 from a previous version of Malcolm. Instead, shut down Malcolm, rename your old Malcolm installation directory to something else, and reconfigure Malcolm using `./scripts/configure` and `./scripts/auth_setup`. idaholab/Malcolm@v23.04.0...v23.05.0 * New features - integrate [ICSNPP-Synchrophasor](https://github.com/cisagov/icsnpp-synchrophasor/) parser (idaholab#190) - [End-to-end Malcolm and Hedgehog Linux ISO Installation]((https://idaholab.github.io/Malcolm/docs/malcolm-hedgehog-e2e-iso-install.html#InstallationExample) document (idaholab#181) - support Malcolm deployment with Kubernetes (idaholab#149) + see [Deploying Malcolm with Kubernetes](https://idaholab.github.io/Malcolm/docs/kubernetes.html#Kubernetes) + This could be considered a "beta" release for Malcolm deployment with Kubernetes, as there is still [some work](https://github.com/idaholab/Malcolm/issues?q=is%3Aissue+is%3Aopen+kubernetes) to be done in this area. Please let us know what issues or suggestions you have via the [issue tracker](https://github.com/idaholab/Malcolm/issues) or via email to [[email protected]](mailto:[email protected]?subject=Malcolm). + contributing issues: * inotify issue (idaholab#168) * htadmin/nginx and htpasswd (idaholab#169) * opensearch (idaholab#170) * uploading large PCAP files (idaholab#171) * script consolidation (idaholab#172) * documentation (idaholab#173) * user-defined persistent volumes (idaholab#174) * opensearch keystore (idaholab#176) * expose other TCP services (idaholab#183) * provide with filebeat access to nginx access and error logs (idaholab#186) * use Secrets for some environment variables instead of ConfigMaps (idaholab#189) * Enhancements and fixes * remove name-map-ui container (idaholab#165) in favor of using NetBox for asset identification * Python script refactoring, consolidation and cleanup * standardization of Docker container entrypoints * create `./scripts/configure` alias for `./scripts/install.py --configure` * Component version updates - Arkime to [v4.3.0](https://github.com/arkime/arkime/blob/fa0db2415bdc109be7a4dd8ee2c2838673980b5f/CHANGELOG#L33-L72) - Capa to [v5.1.0](https://github.com/mandiant/capa/releases/tag/v5.1.0) - Fluent Bit to [v2.1.2](https://fluentbit.io/announcements/v2.1.2/) - NetBox to [v3.5.0](https://github.com/netbox-community/netbox/releases/tag/v3.5.0) - NGINX to [v1.22.1](http://nginx.org/en/CHANGES-1.22) - Supercronic to [v0.2.24](https://github.com/aptible/supercronic/releases/tag/v0.2.24) - Suricata to [v6.0.10](https://suricata.io/2023/01/31/suricata-6-0-10-released/) - Yara to [v4.3.0](https://github.com/VirusTotal/yara/releases/tag/v4.3.0) - Zeek to [v5.2.1](https://github.com/zeek/zeek/releases/tag/v5.2.1)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bugs fixed
Improvements
logsandstatusconvenience scripts to allow filtering to a particular service