Christoffer Claesson

 Here you go @zl2rob

Suggest to re-open this issue as the suggested fix does not in fact fix the arbitrary file upload vulnerability Tested on a clean install of the updated program which contain...

Agreed that the server should run behind a Zerotier network, and preferably with SSL to protect the users etc. Though even if this is tested on the _non_ SSL port,...

Again i'd beg to differ so please correct me where i am wrong! I did follow the installation guide in the documentation Prompting for the "first start" i pressed enter...

Since the SSL DP Service uses the same API call it is still vulnerable! I just used the TCP DP port for brevity's sake as you can make simple PoCs...

I mean, will there be a patch in 1.9.9 for input sanitization? The issue is not an authorization issue, but thats cool it is now requiring cert based auth for...

Seconded, Teamserver running on Ubuntu-server 22.04, and client on Ubuntu 22.04-desktop Tried both Dev and Main branches

I am +1 this issue, i'd really like to see a Beats for 7.4 on BSD, would be great to run on a PFsense with suricata, and have that as...

i did too, i also wrote a small guide based on @jakommo instructions in #1034 https://blog.securitybits.io/2019/12/beats-7.5.0-on-pfsense-2.4.4/ edit: updated my link due to blog migration

Hi @tientmse62290 and @getkub I wrote a blogpost about compiling beats for FreeBSD a while back: https://blog.securitybits.io/2019/12/beats-7.5.0-on-pfsense-2.4.4/ I just compiled 7.8 with these instructions. based from @Jakommo Just change: `git...