configuration/documentation for using another OpenSearch cluster rather than local docker #10
Assignees
Labels
doc
Relating to Malcolm documentation
docker
Relating to docker and docker-compose as used by Malcolm
opensearch
Relating to Malcolm's use of OpenSearch
Projects
Comments
mmguero
added
doc
mmguero
pushed a commit
to mmguero-dev/Malcolm
that referenced
this issue
Apr 12, 2022
Integrate Suricata into Main
mmguero
changed the title
|
While I'm experimenting with this, I've got a little test example that brings up a 3 node cluster (one cluster manager, two data nodes) with SSL enabled with an LDAP backend. Not anything you'd want to use for production, but will be useful for testing. |
mmguero
added a commit
to mmguero-dev/Malcolm
that referenced
this issue
Aug 22, 2022
…er than local docker (idaholab#10) Squashed commit of the following: commit 6f0cce6 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Mon Aug 22 14:33:19 2022 -0600 README updates commit b70154b Author: Seth Grover <mero.mero.guero@gmail.com> Date: Mon Aug 22 13:40:20 2022 -0600 tweaks to install.py for opensearch URL stuff commit 9674260 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Mon Aug 22 11:49:41 2022 -0600 Quiet message from arkime commit a67b1bd Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:44:14 2022 -0600 proxy opensearch creds through dashboards for importing commit 051ec1a Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:27:01 2022 -0600 import requests.auth commit 3c65c1a Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:25:49 2022 -0600 bump to v6.3.0 commit 4248e40 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:22:39 2022 -0600 proxy opensearch creds through dashboards for importing commit e7677dc Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:17:01 2022 -0600 don't fail on some dashboards setup commit b9dd113 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 13:01:06 2022 -0600 set permissions on files containing secrets commit 9fe37b1 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 12:43:58 2022 -0600 fix logstash startup commit 018a146 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 12:42:56 2022 -0600 fix arkime and dashbaords startup commit e679a31 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 12:23:13 2022 -0600 work in progress specifying the opensearch connection info commit 4808183 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 12:22:57 2022 -0600 work in progress specifying the opensearch connection info commit 21efd67 Author: SG <mero.mero.guero@gmail.com> Date: Fri Aug 19 08:11:58 2022 -0600 fix arkime startup commit 58d07b5 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 16:54:16 2022 -0600 fix build commit 2c08399 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 16:13:02 2022 -0600 do primary and secondary servers the same way commit 2a40400 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 15:37:33 2022 -0600 comments commit 9b45c5b Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 15:34:47 2022 -0600 work in progress on generalizing opensearch connection params commit 303979c Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 15:27:20 2022 -0600 work in progress on generalizing opensearch connection params commit 83ff378 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 14:31:23 2022 -0600 work in progress on generalizing opensearch connection params commit e7f2227 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 14:04:38 2022 -0600 work in progress on generalizing opensearch connection params commit fe962ca Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 12:41:31 2022 -0600 work in progress on generalizing opensearch connection params commit 175163d Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 11:48:22 2022 -0600 work in progress commit 7d6973d Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 11:43:41 2022 -0600 work in progress commit 3dfcfb2 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 10:48:54 2022 -0600 added a whole bunch of TODOs (search for TODO: handle) commit df238a5 Author: Seth Grover <mero.mero.guero@gmail.com> Date: Thu Aug 18 10:41:28 2022 -0600 working on specifying creds for remote opensearch differently
|
Should be working now for v6.3.0, including documentation. More testing to come before release. |
mmguero
added a commit
to mmguero-dev/Malcolm
that referenced
this issue
Jan 17, 2024
… to HTML attribute injection when passing user input as keys to xmlattr filter idaholab#10)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
From Malcolm created by mmguero: cisagov#16
In some cases it will make more sense for people to use their own
elasticsearchOpenSearch deployment rather than Malcolm's dockerized one. For example, in order to do a larger scale-out implementation with multiple data notes, etc.I'm going to trying things out for this in a personal branch dedicated to this topic. Specifying the connection parameters (IP/port) should be pretty easy once things are normalized into a single source of environment variables in the compose file. I think the trick will be how to specify authentication information for all of the clients. This will include:
The text was updated successfully, but these errors were encountered: