Skip to content

Latest commit

 

History

History
102 lines (53 loc) · 3.24 KB

dependencies.rst

File metadata and controls

102 lines (53 loc) · 3.24 KB
Raw

Installing dependencies

Note

The integration with AWS S3 can be configured in the Wazuh manager (which also behaves as an agent) or directly in a Wazuh agent. This choice merely depends on how you decide to access your AWS infrastructure in your environment.

Warning

The Wazuh manager includes all dependencies installed, these steps are only necessary when configuring the integration in a Wazuh agent.

Python

The AWS module requires Python 3. It is compatible with Python 3.7 and above.

Yum

# yum update && yum install python3

APT

# apt-get update && apt-get install python3

The required modules can be installed with Pip, the Python package manager. Most UNIX distributions have this tool available in their software repositories:

Yum

# yum update && yum install python3-pip

APT

# apt-get update && apt-get install python3-pip

It is recommended to use a pip version greater than or equal to 19.3 to ease the installation of the required dependencies.

Python 3.7–3.10

# pip3 install --upgrade pip

Python 3.11

# pip3 install --upgrade pip --break-system-packages

Note

This command modifies the default externally managed Python environment. See the PEP 668 description for more information.

To prevent the modification, you can run pip3 install --upgrade pip within a virtual environment. You must update the aws-s3 script shebang with your virtual environment interpreter, for example, #!/path/to/your/virtual/environment/bin/python3.

AWS pip dependencies

Boto3 is the official package supported by Amazon to manage AWS resources. It is used to download the log messages from the different AWS services supported by Wazuh. The module is compatible with boto3 from 1.13.1 to 1.17.85. Future boto3 releases should maintain compatibility although it cannot be guaranteed.

To install the dependencies, execute the following command:

Python 3.7–3.10

# pip3 install boto3==1.17.85 botocore==1.20.85 jmespath==0.9.5 python-dateutil==2.8.1 six==1.14.0 urllib3==1.26.5 s3transfer==0.4.2 pyarrow==8.0.0 pyarrow_hotfix==0.5

Python 3.11

# pip3 install --break-system-packages boto3==1.17.85 botocore==1.20.85 jmespath==0.9.5 python-dateutil==2.8.1 six==1.14.0 urllib3==1.26.5 s3transfer==0.4.2 pyarrow==13.0.0 pyarrow_hotfix==0.5

Note

If you're using a virtual environment, remove the --break-system-packages parameter from the command above.