Merge pull request #469 from wazuh/feature-remove-vuls

Remove vuls integration

roles/wazuh/ansible-wazuh-agent/defaults/main.yml

@@ -237,16 +237,6 @@ wazuh_agent_config:
     java_path_win: '\\server\jre\bin\java.exe'
     ciscat_path: 'wodles/ciscat'
     ciscat_path_win: 'C:\cis-cat'
-  vuls:
-    disable: 'yes'
-    interval: '1d'
-    run_on_start: 'yes'
-    args:
-      - 'mincvss 5'
-      - 'antiquity-limit 20'
-      - 'updatenvd'
-      - 'nvd-year 2016'
-      - 'autoupdate'
   localfiles:
     debian:
       - format: 'syslog'

roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml

@@ -185,19 +185,6 @@
     - config
     - api
 
-- name: Linux | Vuls integration deploy (runs in background, can take a while)
-  command: /var/ossec/wodles/vuls/deploy_vuls.sh {{ ansible_distribution|lower }} {{ ansible_distribution_major_version|int }}
-  args:
-    creates: /var/ossec/wodles/vuls/config.toml
-  async: 3600
-  poll: 0
-  when:
-    - wazuh_agent_config.vuls.disable != 'yes'
-    - ansible_distribution in ['Redhat', 'CentOS', 'Ubuntu', 'Debian', 'Oracle']
-    - not ansible_check_mode
-  tags:
-    - init
-
 - name: Linux | Installing agent configuration (ossec.conf)
   template: src=var-ossec-etc-ossec-agent.conf.j2
             dest=/var/ossec/etc/ossec.conf

roles/wazuh/ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2

@@ -296,18 +296,6 @@
   </syscheck>
   {% endif %}
 
-
-  {% if ansible_system == "Linux" and wazuh_agent_config.vuls.disable == 'no' %}
-  <wodle name="command">
-    <disabled>no</disabled>
-    <tag>Wazuh-VULS</tag>
-    <command>/usr/bin/python /var/ossec/wodles/vuls/vuls.py{% for arg in wazuh_agent_config.vuls.args %} --{{ arg }}{% endfor %}</command>
-    <interval>{{ wazuh_agent_config.vuls.interval }}</interval>
-    <ignore_output>yes</ignore_output>
-    <run_on_start>{{ wazuh_agent_config.vuls.run_on_start }}</run_on_start>
-  </wodle>
-  {% endif %}
-
   <!-- Files to monitor (localfiles) -->
   {% if ansible_system == "Linux" %}
   {% for localfile in wazuh_agent_config.localfiles.linux %}

roles/wazuh/ansible-wazuh-manager/defaults/main.yml

@@ -256,16 +256,6 @@ wazuh_manager_config:
         update_from_year: '2010'
         update_interval: '1h'
         name: '"nvd"'
-  vuls:
-    disable: 'yes'
-    interval: '1d'
-    run_on_start: 'yes'
-    args:
-      - 'mincvss 5'
-      - 'antiquity-limit 20'
-      - 'updatenvd'
-      - 'nvd-year 2016'
-      - 'autoupdate'
   log_level: 3
   email_level: 12
   localfiles:

roles/wazuh/ansible-wazuh-manager/tasks/main.yml

@@ -263,19 +263,6 @@
     - init
     - config
 
-- name: Linux | Vuls integration deploy (runs in background, can take a while)
-  command: /var/ossec/wodles/vuls/deploy_vuls.sh {{ ansible_distribution|lower }} {{ ansible_distribution_major_version|int }}
-  args:
-    creates: /var/ossec/wodles/vuls/config.toml
-  async: 3600
-  poll: 0
-  when:
-    - wazuh_manager_config.vuls.disable != 'yes'
-    - ansible_distribution in ['Redhat', 'CentOS', 'Ubuntu', 'Debian', 'Oracle', 'Amazon']
-    - not ansible_check_mode
-  tags:
-    - init
-
 - name: Configure ossec.conf
   template: src=var-ossec-etc-ossec-server.conf.j2
             dest=/var/ossec/etc/ossec.conf

roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2

@@ -374,17 +374,6 @@
   </command>
 {% endfor %}
 
-{% if ansible_system == "Linux" and wazuh_manager_config.vuls.disable == 'no' %}
-  <wodle name="command">
-    <disabled>no</disabled>
-    <tag>Wazuh-VULS</tag>
-    <command>/usr/bin/python /var/ossec/wodles/vuls/vuls.py{% for arg in wazuh_manager_config.vuls.args %} --{{ arg }}{% endfor %}</command>
-    <interval>{{ wazuh_manager_config.vuls.interval }}</interval>
-    <ignore_output>yes</ignore_output>
-    <run_on_start>{{ wazuh_manager_config.vuls.run_on_start }}</run_on_start>
-  </wodle>
-{% endif -%}
-
 {% if agentless_creds is defined %}
 {% for agentless in agentless_creds %}
   <agentless>