forked from wazuh/wazuh-puppet
-
Notifications
You must be signed in to change notification settings - Fork 0
/
CHANGELOG
292 lines (206 loc) · 12.9 KB
/
CHANGELOG
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
2014-11-28 Jonathan Gazeley <[email protected]> - 1.3.0
===========================================================
Jonathan Gazeley <[email protected]>:
* Add support for Debian "Jessie" (thanks to @ivan7farre)
2015-01-16 Jonathan Gazeley <[email protected]> - 1.3.3
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix compatibility issue with PuppetServer (thanks to @d9705996)
2015-03-02 Jonathan Gazeley <[email protected]> - 1.4.0
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix dependency problem by providing EPEL on RHEL (thanks to @otteydw for reporting)
2015-05-28 Jonathan Gazeley <[email protected]> - 1.4.1
===========================================================
Jonathan Gazeley <[email protected]>:
* Email notification is no longer hard-coded in ossec.conf (thanks to @earsdown)
2015-06-10 Jonathan Gazeley <[email protected]> - 1.4.2
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix regression that breaks behaviour on CentOS 6 and lower
2015-06-11 Jonathan Gazeley <[email protected]> - 1.5.1
===========================================================
Jonathan Gazeley <[email protected]>:
* Stop using andyshinn/atomic and configure Atomicorp's OSSEC repo locally
2015-06-30 Jonathan Gazeley <[email protected]> - 1.5.3
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix permissions on log files so logwatch on EL7 doesn't complain
* Key concat::fragment for agentkeys on $agent_name to avoid duplicated resources
2015-07-06 Jonathan Gazeley <[email protected]> - 1.5.4
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix regression in log file permissions (thanks to @paulseward)
2015-07-20 Jonathan Gazeley <[email protected]> - 1.6.0
===========================================================
Jonathan Gazeley <[email protected]>:
* Enable SELinux support
2015-08-03 Jonathan Gazeley <[email protected]> - 1.6.2
===========================================================
Jonathan Gazeley <[email protected]>:
* Fix log directory permissions
2015-08-07 Jonathan Gazeley <[email protected]> - 1.7.0
===========================================================
Jonathan Gazeley <[email protected]>:
* Use puppetlabs/mysql to manage MySQL client
2015-08-21 Jonathan Gazeley <[email protected]> - 1.7.2
===========================================================
Jonathan Gazeley <[email protected]>:
* SELinux permissions fix
2015-09-16 Michael Porter <[email protected]> - 2.0.0
===========================================================
Michael Porter <[email protected]>:
* Allow skipping MySQL dependency, disabling active response,
and executing rootcheck
* Windows agent support
* Use Puppet md5 support, instead of adding parser function
* Utilize centralized agent configuration
* Various clean-up and reorganization of Puppet module structure
* Utilize 'hostname' instead of 'uniqueid' for agent ID, due to uniqueid
not existing on Windows, and not necessarily being unique across the org
on Linux
2015-09-16 Jose Luis Ruiz <[email protected]> - 2.0.0
===========================================================
Jose Luis Ruiz <[email protected]>:
* Update for all kind of Windows
* Change repos to Wazuh, Inc.
2015-10-13 Jose Luis Ruiz <[email protected]> - 2.0.1
===========================================================
Jose Luis Ruiz <[email protected]>:
* Update Windows Agent to version 2.8.1
* Fix a bug with the Windows Agent ID, now use for all systems **fqdn_rand** to generate the client.keys ID
2015-10-13 Jose Luis Ruiz <[email protected]> - 2.0.2
===========================================================
Jose Luis Ruiz <[email protected]>:
* Update Windows Agent to version 2.8.3
* Update packaget to Ubuntu Vivid and Wily
* Update packages to Debian Stretch and Sid
2015-12-02 Jose Luis Ruiz <[email protected]> - 2.0.3
===========================================================
Jose Luis Ruiz <[email protected]>:
* Fix server package name for Ubuntu (thanks to @HielkeJ for Pull request)
* Add full fingerprint for Ubuntu and Debian (thanks to @HielkeJ for Pull request)
2015-12-21 Jose Luis Ruiz <[email protected]> - 2.0.4
===========================================================
Jose Luis Ruiz <[email protected]>:
* Add manage_repo option on client.pp (issue #2 reported by @cudgel)
* Add new repo for RHEL5 and CentOS5 have different rpm signature.
2016-01-19 Jose Luis Ruiz <[email protected]> - 2.0.5
===========================================================
Jose Luis Ruiz <[email protected]>:
* Add multiple email_to addresses
* Adding support for server-hostname in agent config (pull request #3 thanks @alustenberg)
* Adding ossec_scanpaths configuration thanks to @djjudas21 repository
2016-02-03 Jose Luis Ruiz <[email protected]> - 2.0.6
===========================================================
Jose Luis Ruiz <[email protected]>:
* Add ability to manage epel repo to master/client configs (pull request #4 thanks @justicel)
* The @path uses the puppet level path variable (pull request #5 thanks @justicel)
* Allow whitelisting of IP addreses (thanks @chaordix)
* Provides an option to tell the puppet module to not manage the client.keys file at all. (pull request #7 thanks @TravellingGuy)
2016-02-05 Jose Luis Ruiz <[email protected]> - 2.0.7
===========================================================
Jose Luis Ruiz <[email protected]>:
* Run agent-auth if client.keys doesn't exist an agent. (pull request #9 thanks @TravellingGuy)
2016-02-05 Jose Luis Ruiz - 2.0.8
===========================================================
Jose Luis Ruiz <[email protected]>:
* Fix some typos with puppet-lint.
2016-02-23 Jose Luis Ruiz - 2.0.9
===========================================================
Jose Luis Ruiz <[email protected]>:
* Allow the agent identity to be modified. (pull request #10 thanks @damoxc)
* prevent the agent-auth command being used. (pull request #11 thanks @damoxc)
* Change log directory to only be readable by user and group. (pull request #12 thanks @damoxc)
* Add the ability to configure a MySQL database with OSSEC server. (pull request #14 thanks @coreone)
2016-04-26 Jose Luis Ruiz - 2.0.10
===========================================================
Jose Luis Ruiz <[email protected]>:
* Extra rules config to integrate Wazuh ruleset. (pull request #17 thanks @TravellingGUy)
* Allow configuration of the email_maxperhour and email_idsname configuration items. (pull request #18 thanks @TravellingGUy)
* Fix bug in client exported resources (pull request #19 thanks @scottcunningham)
2016-05-04 Jose Luis Ruiz - 2.0.11
===========================================================
Jose Luis Ruiz <[email protected]>:
* Fix windows installation error in params. (pull request #20 thanks @cmblong)
* Added support for repeated_offenders in activeresponse (pull request #21 thanks @ialokin)
2016-05-04 Jose Luis Ruiz - 2.0.12
===========================================================
Jose Luis Ruiz <[email protected]>:
* Add MariaDB support ( (pull reques #3 thanks @ialokin)
* Permit admin to disable auto_ignore for files which change more than three times. (pull request #24 thanks @cmblong)
* Change fqdn_rand(3000) to a variable to allow us to increase the number of available clients. (pull request #25 thanks @cmblong)
* Can now set a minimal activeresponse entry containing just repeated_offenders by defining $ar_repeated_offenders in the wazuh::client. (pull request #26 thanks @ialokin)
* Add variable to enable prefilter command. (pull request #27 thanks @cmblong)
* Set service provider to redhat on Redhat systems. (pull request #28 thanks @cmblong))
2016-06-14 Jose Luis Ruiz - 2.0.13
===========================================================
* Adding xenial to the supported distributions.(pull request #31 thanks @stephen-kainos)
2016-06-14 Jose Luis Ruiz - 2.0.14
===========================================================
* Add prefilter to agent config. (pull request #32 thanks @cmblong )
* Add function addlog to the agent. (issue #30 thanks @paul-cs)
* Add the apt::key can set a proxy and the key add process could be done. (issue #34 thanks @drequena)
2016-10-15 Jose Luis Ruiz - 2.0.15
===========================================================
* Add option to enable syslog output. (pull request #35 thanks @TravellingGUy )
* Add Add Amazon Linux support. (pull request #37 thanks @seefood)
* Hard-coded GPG key for RHEL-like systems. (pull request #37 thanks @tobowers)
* Override package & service name for client installation. (pull request #43 thanks MrSecure)
2016-10-18 Jose Luis Ruiz - 2.0.16
===========================================================
* Add local_decoder.xml and local_rules.xml templates
2016-10-18 Jose Luis Ruiz - 2.0.17
===========================================================
* Fixed gpgkey path under CentOS and RHEL
2016-10-20 Jose Luis Ruiz - 2.0.18
===========================================================
* Fixed 10_ossec.conf.erb template, "local_decoder" added to rules configuration
2016-12-08 Jose Luis Ruiz - 2.0.19
===========================================================
* Compat with Older versions facter. (pull request #47 thanks @seefood)
* Template paths as parameters. (pull request #48 thanks @seefood )
* Client: allow configurable service_has_status, default to params. (pull request #51 thanks @josephholsten )
* Added Yakketi to the supported distributions.
* Modified activeresponse.erb to include <rules_id></rules_id> tags (pull request #56 thanks @MatthewRBruce)
* Modified client.pp and server.pp to accept package versions as parameter. (pull request #57 thanks @MatthewRBruce)
2016-12-08 Jose Luis Ruiz - 2.0.20
===========================================================
* Fixed typo in the windows package, this type made the deploy fails under windows.
2017-04-24 Jose Luis Ruiz - 2.0.21
===========================================================
* Fix apt deprecation warnings. (thanks @kdole)
* Avoid warnings when storeconfigs are not available. (thanks @kdole)
* Use default local_files setting. (thanks @kdole)
* Making ossec server port configurable. (thanks @edge-records)
* Allow custom agent configurations (thanks @ffleming)
* Fixed issec #66 (thanks @thedawidbalut)
* Adds options to control rootcheck feature. (thanks @netman2k)
* Use puppet-selinux instead of jfryman-selinux (thanks @netman2k)
* Allow custom ossec.conf in agent and server template (thanks @sam-wouters)
* Fixed issue #71. (Thanks for reporting it @sc-chad)
* Fixed issue #72. (Thanks for reporting it @sc-chad)
* Clean code and added new OpenScap option (thanks @0x2A)
* module refactored/adapted for wazuh 2.0 (thanks @0x2A)
* New wazuh-agent-2.0.exe for Windows.
2017-05-27 [email protected] - 2.0.22
===========================================================
* Fixed issue #3. (Thanks for reporting it @ddholstad99)
* Fixed issue #4. (Thanks for reporting it @elisiano)
* Explicitly use the windows package provider pull request #11 (Thanks @damoxc)
* Enable fedora 23/24/25 for pull request #9 (Thanks @ddholstad99)
* Fix for issue Fix for #6 validate_cmd pull request #12 (Thanks @dakine1111)
* Add $wodle_openscap_content parameter to server.pp pull request #12 (Thanks hex2a)
* Added some changes in order to do this module compatible. (pull request #5 thanks elisano)
2017-xx-xx [email protected] - 2.0.23
===========================================================
* Fixed issue #18 with the pull request #17. (thanks @lemrouch)
* Fixed issue #29 puppetlabs/apt version 4 onwards breaks the installation of wazuh server (thanks @rafaelfc-olx)
* Adding support for changing ossec_server_protocol with the pull request #30 (thanks @rafaelfc-olx)
* Managing wazuh-api alongside with wazuh-manager with the pull request #31 (thanks @rafaelfc-olx)
* Preventing Duplicated declaration issues regarding apt-transport-https package with the pull request #32 (thanks @rafaelfc-olx)
* Adding support for changing the client protocol and validating the manager by CA with the pull request #34 (thanks @rafaelfc-olx)
* Configuring wazuh-api from puppet with the pull request #35 (thanks @rafaelfc-olx)
* Adding notify_time and time-reconnect options to client config with the pull request #36 (thanks @rafaelfc-olx)
* New wazuh-winagent-v2.1.1-1.exe added.
* Profile name for Centos 7 is not _server, it's _common like RHEL7 with the pull request #38 (thanks @juliovalcarcel)