From 238eb05b3c7368bddd505a21f9773902776a36bd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?David=20Correa=20Rodr=C3=ADguez?=
 <davidcorreafjb2001@gmail.com>
Date: Thu, 10 Aug 2023 13:48:33 +0200
Subject: [PATCH] Edited VD config and jinja2 template

---
 .../ansible-wazuh-manager/defaults/main.yml   | 22 +++++++++++--------
 .../var-ossec-etc-ossec-server.conf.j2        |  3 +++
 2 files changed, 16 insertions(+), 9 deletions(-)

diff --git a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
index 4ead9992..3251a6ce 100644
--- a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
@@ -174,6 +174,7 @@ wazuh_manager_sca:
 wazuh_manager_vulnerability_detector:
   enabled: 'no'
   interval: '5m'
+  min_full_scan_interval: '6h'
   run_on_start: 'yes'
   providers:
     - enabled: 'no'
@@ -181,18 +182,23 @@ wazuh_manager_vulnerability_detector:
         - 'trusty'
         - 'xenial'
         - 'bionic'
+        - 'focal'
+        - 'jammy'
       update_interval: '1h'
       name: '"canonical"'
     - enabled: 'no'
       os:
-        - 'wheezy'
-        - 'stretch'
-        - 'jessie'
         - 'buster'
+        - 'bullseye'
       update_interval: '1h'
       name: '"debian"'
     - enabled: 'no'
-      update_from_year: '2010'
+      os:
+        - '5'
+        - '6'
+        - '7'
+        - '8'
+        - '9'
       update_interval: '1h'
       name: '"redhat"'
     - enabled: 'no'
@@ -201,10 +207,6 @@ wazuh_manager_vulnerability_detector:
         - 'amazon-linux-2'
       update_interval: '1h'
       name: '"alas"'
-    - enabled: 'no'
-      update_from_year: '2010'
-      update_interval: '1h'
-      name: '"arch"'
     - enabled: 'no'
       os:
         - '11-server'
@@ -216,7 +218,9 @@ wazuh_manager_vulnerability_detector:
       update_interval: '1h'
       name: '"suse"'
     - enabled: 'no'
-      update_from_year: '2010'
+      update_interval: '1h'
+      name: '"arch"'
+    - enabled: 'no'
       update_interval: '1h'
       name: '"msu"'
     - enabled: 'no'
diff --git a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2 b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
index cf87a44c..658fcf43 100644
--- a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
+++ b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
@@ -265,6 +265,9 @@
   {% if wazuh_manager_config.vulnerability_detector.interval is defined %}
     <interval>{{ wazuh_manager_config.vulnerability_detector.interval }}</interval>
   {% endif %}
+  {% if wazuh_manager_config.vulnerability_detector.min_full_scan_interval is defined %}
+    <min_full_scan_interval>{{ wazuh_manager_config.vulnerability_detector.min_full_scan_interval }}</min_full_scan_interval>
+  {% endif %}
   {% if wazuh_manager_config.vulnerability_detector.run_on_start is defined %}
     <run_on_start>{{ wazuh_manager_config.vulnerability_detector.run_on_start }}</run_on_start>
   {% endif %}