Julien

More security incident details?

4

Hello, I found great that you share your incident response docs. Thanks for it. I use it as a base to detail more on security incident response and a few...

Import/Export pack configuration?

4

Hello, Any way to import an existing pack configuration file either through gui or cli? More generally, would want to import/export queries, pack or osqueryd standalone config. Thanks

Zentral ansible role?

15

Hello Thanks a lot for your work. I look at the repo, the other ones from same user and ansible galaxy but I didn't find the role(s) to setup zentral....

Client Certificate authentication?

1

Hello Do you include any client authentication mechanisms? Or should go through nginx and web client certificates. Thanks

Currently if there are Match blocks containing an option, inspec will return an array for example ```  "\u001b[38;5;9m × sshd-39: Server: Disable TCP forwarding",   "\u001b[38;5;9m × SSHD...

This just adds content-security-policy to Chrome and Firefox manifest which should decrease risk score on https://crxcavator.io/report/iaiomicjabeggjcfkbimgmglanimpnae I believe there is no XMLHTTPRequest which would need connect-src.

Support use of SSH agent with kitchen-lxd_cli

3

Currently, when using inspec verifier with kitchen-lxd_cli, verifier fails ``` >>>>>> Failed to complete #verify action: [Transport error, can't connect to 'ssh' backend: SSH session could not be established] on...

Grafana recommended dashboard?

13

Thanks for your work. Is there any recommended dashboard matching systemd_exporter features? https://grafana.com/grafana/dashboards/?search=systemd+exporter gets nothing

When installing systemd_exporter on Ubuntu 18.04, there is a spam of logs related to https://github.com/povilasv/systemd_exporter/blob/master/systemd/systemd.go#L644 installation done with https://github.com/cloudalchemy/ansible-systemd-exporter I think that systemd version should be tested once and if...

When installing systemd_exporter on Ubuntu 18.04 or 20.04, there is a spam of logs related to https://github.com/povilasv/systemd_exporter/blob/master/systemd/systemd.go#L579 installation done with https://github.com/cloudalchemy/ansible-systemd-exporter I would think that that it is expected occurence...