ilsaloving
ilsaloving
I just stumbled upon this myself. I'm wondering if the trojan rootcheck stuff needs to be removed entirely... After a quick search, the most recent rules list I could find...
> We also discovered this falsepositive and wonder whats the problem aout whitelisting this specific hash. Disabling the whole check is not a trustworthy solution for such a new and...
Not even remotely. There's very active development. It's just that some of the checks wazuh does is based on sources that have not been well maintained.
Perhaps we should start making pull requests to update this data in https://github.com/wazuh/wazuh/tree/master/ruleset/rootcheck/db ?
Okay, so for SCA there's not much we can do. Is there an override mechanism, similar to what you can do with alert rules?
As an experiment, I created my own image using ubuntu. I got this when I registered the plugin: ``` vault-server_1 | 2024-04-19T21:48:25.565Z [DEBUG] core: attempting to load backend plugin: name=vault-plugin-secrets-ksm...
FYI, in my particular case, it turns out that the referrals were happening because I had a typo in my Base DN. Authentication worked once that was fixed. I think...
Looks like someone else has already taken care of it. https://registry.terraform.io/providers/bierwirth-it/docker https://github.com/bierwirth-it/terraform-provider-docker Thank you Bierwirth!
How soon before this is considered production ready? If the existing visualization system were any more of a hot mess, we could name it Pompei. Laughably bad UI... Zero documentation......