Adding null variables for visibility (wazuh-manager)
This commit is contained in:
Miguelangel Freitas
parent
9fec1d16bd
commit
c1dc137adc
@ -5,13 +5,50 @@ wazuh_manager_config:
|
|||||||
json_output: 'yes'
|
json_output: 'yes'
|
||||||
alerts_log: 'yes'
|
alerts_log: 'yes'
|
||||||
logall: 'no'
|
logall: 'no'
|
||||||
|
connection:
|
||||||
|
- type: 'secure'
|
||||||
|
port: '1514'
|
||||||
|
protocol: 'tcp'
|
||||||
authd:
|
authd:
|
||||||
enable: false
|
enable: false
|
||||||
email_notification: no
|
port: 1515
|
||||||
|
use_source_ip: 'no'
|
||||||
|
force_insert: 'no'
|
||||||
|
force_time: 0
|
||||||
|
purge: 'no'
|
||||||
|
use_password: 'no'
|
||||||
|
ssl_agent_ca: null
|
||||||
|
ssl_verify_host: 'no'
|
||||||
|
ssl_manager_cert: null
|
||||||
|
ssl_manager_key: null
|
||||||
|
ssl_auto_negotiate: 'no'
|
||||||
|
email_notification: 'no'
|
||||||
mail_to:
|
mail_to:
|
||||||
- admin@example.net
|
- 'admin@example.net'
|
||||||
mail_smtp_server: localhost
|
mail_smtp_server: localhost
|
||||||
mail_from: wazuh-server@example.com
|
mail_from: wazuh-server@example.com
|
||||||
|
extra_emails:
|
||||||
|
- enable: false
|
||||||
|
mail_to: 'admin@example.net'
|
||||||
|
format: full
|
||||||
|
level: 7
|
||||||
|
event_location: null
|
||||||
|
group: null
|
||||||
|
do_not_delay: false
|
||||||
|
do_not_group: false
|
||||||
|
rule_id: null
|
||||||
|
reports:
|
||||||
|
- enable: false
|
||||||
|
category: 'syscheck'
|
||||||
|
title: 'Daily report: File changes'
|
||||||
|
email_to: 'admin@example.net'
|
||||||
|
location: null
|
||||||
|
group: null
|
||||||
|
rule: null
|
||||||
|
level: null
|
||||||
|
srcip: null
|
||||||
|
user: null
|
||||||
|
showlogs: null
|
||||||
syscheck:
|
syscheck:
|
||||||
frequency: 43200
|
frequency: 43200
|
||||||
scan_on_start: 'yes'
|
scan_on_start: 'yes'
|
||||||
@ -61,10 +98,6 @@ wazuh_manager_config:
|
|||||||
globals:
|
globals:
|
||||||
- '127.0.0.1'
|
- '127.0.0.1'
|
||||||
- '192.168.2.1'
|
- '192.168.2.1'
|
||||||
connection:
|
|
||||||
- type: 'secure'
|
|
||||||
port: '1514'
|
|
||||||
protocol: 'tcp'
|
|
||||||
commands:
|
commands:
|
||||||
- name: 'disable-account'
|
- name: 'disable-account'
|
||||||
executable: 'disable-account.sh'
|
executable: 'disable-account.sh'
|
||||||
@ -95,22 +128,33 @@ wazuh_manager_config:
|
|||||||
location: 'local'
|
location: 'local'
|
||||||
level: 6
|
level: 6
|
||||||
timeout: 600
|
timeout: 600
|
||||||
|
syslog_outputs:
|
||||||
|
- server: null
|
||||||
|
port: null
|
||||||
|
format: null
|
||||||
|
|
||||||
wazuh_agent_configs:
|
wazuh_agent_configs:
|
||||||
- type: os
|
- type: os
|
||||||
type_value: linux
|
type_value: linux
|
||||||
frequency_check: 79200
|
syscheck:
|
||||||
ignore_files:
|
frequency: 43200
|
||||||
|
scan_on_start: 'yes'
|
||||||
|
ignore:
|
||||||
- /etc/mtab
|
- /etc/mtab
|
||||||
- /etc/mnttab
|
- /etc/mnttab
|
||||||
- /etc/hosts.deny
|
- /etc/hosts.deny
|
||||||
- /etc/mail/statistics
|
- /etc/mail/statistics
|
||||||
- /etc/svc/volatile
|
- /etc/svc/volatile
|
||||||
|
no_diff:
|
||||||
|
- /etc/ssl/private.key
|
||||||
directories:
|
directories:
|
||||||
- check_all: yes
|
- dirs: /etc,/usr/bin,/usr/sbin
|
||||||
dirs: /etc,/usr/bin,/usr/sbin
|
checks: 'check_all="yes"'
|
||||||
- check_all: yes
|
- dirs: /bin,/sbin
|
||||||
dirs: /bin,/sbin
|
checks: 'check_all="yes"'
|
||||||
|
rootcheck:
|
||||||
|
frequency: 43200
|
||||||
|
cis_distribution_filename: null
|
||||||
localfiles:
|
localfiles:
|
||||||
- format: 'syslog'
|
- format: 'syslog'
|
||||||
location: '/var/log/messages'
|
location: '/var/log/messages'
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user