Groups
Conversations
All groups and messages
Send feedback to Google
Help
Training
Sign in
Groups
security-onion
Conversations
About
security-onion
Contact owners and managers
1–30 of 9460
PLEASE NOTE!
This Google Group is only for the old Security Onion 16.04 platform. This platform reached End of Life on 4/16/2021:
https://blog.securityonion.
net/2021/04/security-onion-
1604-has-reached-end-of.html
If you have questions about the new Security Onion 2 platform, please use our new Github Discussions page:
https://securityonion.net/
discuss
Thanks!
Mark all as read
Report group
0 selected
glwa...@gmail.com
,
Doug Burks
2
4/20/21
2.3.40 ISO image boots to 'grub'
Please start a new discussion at https://securityonion.net/discuss Thanks! On Tuesday, April 20, 2021
unread,
2.3.40 ISO image boots to 'grub'
Please start a new discussion at https://securityonion.net/discuss Thanks! On Tuesday, April 20, 2021
4/20/21
Doug Burks
4/16/21
Security Onion 16.04 has reached End Of Life
https://blog.securityonion.net/2021/04/security-onion-1604-has-reached-end-of.html -- Doug Burks
unread,
Security Onion 16.04 has reached End Of Life
https://blog.securityonion.net/2021/04/security-onion-1604-has-reached-end-of.html -- Doug Burks
4/16/21
Suman Srivastava
,
Doug Burks
2
4/12/21
Issue with Sguil
You could try looking at log files and the output of the sostat command for additional clues. However
unread,
Issue with Sguil
You could try looking at log files and the output of the sostat command for additional clues. However
4/12/21
VnW Pororo
,
ptcru...@gmail.com
3
4/9/21
SecurityOnion v2.3 use Suricata instead of Snort . Why?
What do u mean " there is no option ..." I still dont understand what you mean , sir. Vào
unread,
SecurityOnion v2.3 use Suricata instead of Snort . Why?
What do u mean " there is no option ..." I still dont understand what you mean , sir. Vào
4/9/21
steven jones
,
Doug Burks
2
4/9/21
Increase Hunt query timeout
If you have questions or problems relating to Security Onion 2, please send them to the Security
unread,
Increase Hunt query timeout
If you have questions or problems relating to Security Onion 2, please send them to the Security
4/9/21
Doug Burks
4/9/21
Only 1 week until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
unread,
Only 1 week until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
4/9/21
Xavier Mertens
,
Doug Burks
3
4/8/21
Web interface on loopback?
My bad! Sorry for this! In the mean time, I « solved » my issue by installing a VNC server and
unread,
Web interface on loopback?
My bad! Sorry for this! In the mean time, I « solved » my issue by installing a VNC server and
4/8/21
Xavier Mertens
,
Doug Burks
2
4/7/21
Update Elastic heap size in docker?
Hi Xavier, It seems like you're asking about Security Onion 2. Security Onion 2 questions should
unread,
Update Elastic heap size in docker?
Hi Xavier, It seems like you're asking about Security Onion 2. Security Onion 2 questions should
4/7/21
Doug Burks
4/2/21
Only 2 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
unread,
Only 2 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
4/2/21
Doug Burks
4/1/21
Security Onion Documentation printed book now updated for Security Onion 2.3.40!
https://blog.securityonion.net/2021/04/security-onion-documentation-printed.html -- Doug Burks
unread,
Security Onion Documentation printed book now updated for Security Onion 2.3.40!
https://blog.securityonion.net/2021/04/security-onion-documentation-printed.html -- Doug Burks
4/1/21
Josh
,
Doug Burks
2
3/29/21
S02 Logstash Parsing
If you have questions about the new Security Onion 2 platform, please use our new Github Discussions
unread,
S02 Logstash Parsing
If you have questions about the new Security Onion 2 platform, please use our new Github Discussions
3/29/21
Doug Burks
3/26/21
Only 2 months left to register for 4-day Security Onion 2 Fundamentals for Analysts and Admins Training Class!
https://securityonionsolutions.com/livetraining -- Doug Burks Founder and CEO Security Onion
unread,
Only 2 months left to register for 4-day Security Onion 2 Fundamentals for Analysts and Admins Training Class!
https://securityonionsolutions.com/livetraining -- Doug Burks Founder and CEO Security Onion
3/26/21
Doug Burks
3/26/21
Only 3 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
unread,
Only 3 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
3/26/21
Seshu Thota
,
Doug Burks
2
3/25/21
SO 16.04 install on Ubuntu 16.04 Server
We will not provide any support for Security Onion 16.04 after April 16, 2021. This applies to
unread,
SO 16.04 install on Ubuntu 16.04 Server
We will not provide any support for Security Onion 16.04 after April 16, 2021. This applies to
3/25/21
justin....@gmail.com
,
Doug Burks
2
3/24/21
Analyst tools page connectivity issues
If you have questions about the new Security Onion 2 platform, please use our new Github Discussions
unread,
Analyst tools page connectivity issues
If you have questions about the new Security Onion 2 platform, please use our new Github Discussions
3/24/21
Mat
,
Doug Burks
2
3/23/21
SO 16.04 to SO 2.3
Security Onion 16.04 and 2.3 are totally different architectures, so 16.04 nodes do not connect to
unread,
SO 16.04 to SO 2.3
Security Onion 16.04 and 2.3 are totally different architectures, so 16.04 nodes do not connect to
3/23/21
Ben
,
in...@friendandfamilytech.com
2
3/23/21
SO sensor placement
Hey Ben, you're absolutely right. Although there might be some use cases for analyzing traffic
unread,
SO sensor placement
Hey Ben, you're absolutely right. Although there might be some use cases for analyzing traffic
3/23/21
Doug Burks
3/23/21
Re: [EXTERNAL] [security-onion] Applying so-firewall with salt
This appears to be a question about Security Onion 2 and it looks like you've already posted the
unread,
Re: [EXTERNAL] [security-onion] Applying so-firewall with salt
This appears to be a question about Security Onion 2 and it looks like you've already posted the
3/23/21
VnW Pororo
,
Doug Burks
2
3/23/21
/etc/nsm/localhost-eno1/snort.conf(308) Perfmonitor: Unable to change mode of base stats file "/nsm/sensor_data/localhost-eno1/snort.stats" to mode:438: Operation not permitted.
Have you checked the permissions on that file? On Mon, Mar 22, 2021 at 3:58 AM VnW Pororo <
unread,
/etc/nsm/localhost-eno1/snort.conf(308) Perfmonitor: Unable to change mode of base stats file "/nsm/sensor_data/localhost-eno1/snort.stats" to mode:438: Operation not permitted.
Have you checked the permissions on that file? On Mon, Mar 22, 2021 at 3:58 AM VnW Pororo <
3/23/21
Doug Burks
3/22/21
Security Onion 2.3.40 now available!
Featuring: - Elastic 7.11.2 - FleetDM 3.9.0 - Suricata 6.0.2 - Zeek 4.0.0 - and much more! https://
unread,
Security Onion 2.3.40 now available!
Featuring: - Elastic 7.11.2 - FleetDM 3.9.0 - Suricata 6.0.2 - Zeek 4.0.0 - and much more! https://
3/22/21
namobud...@gmail.com
,
Doug Burks
2
3/22/21
Are TrickBot rules included in the current Suricata rules
Replies inline. On Fri, Mar 19, 2021 at 11:07 AM namobud...@gmail.com <namobud...@gmail.com
unread,
Are TrickBot rules included in the current Suricata rules
Replies inline. On Fri, Mar 19, 2021 at 11:07 AM namobud...@gmail.com <namobud...@gmail.com
3/22/21
Doug Burks
3/19/21
Only 4 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
unread,
Only 4 weeks until Security Onion 16.04 reaches End Of Life!
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
3/19/21
Doug Burks
3/16/21
1 month EOL notice for Security Onion 16.04
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
unread,
1 month EOL notice for Security Onion 16.04
https://blog.securityonion.net/2021/03/1-month-eol-notice-for-security-onion.html -- Doug Burks
3/16/21
Christian
, …
Steven Malm
6
3/15/21
Wildcard for Autocat in Squert
How about, %%REGEXP%%(MALWARE).*(CnC) On Mon, Mar 15, 2021 at 11:26 AM Christian <chris.sommer.cs@
unread,
Wildcard for Autocat in Squert
How about, %%REGEXP%%(MALWARE).*(CnC) On Mon, Mar 15, 2021 at 11:26 AM Christian <chris.sommer.cs@
3/15/21
Doug Burks
3/15/21
Security Onion 16.04.7.3 ISO image now available featuring Zeek 3.0.13, Suricata 5.0.6, Elastic 7.10.2, and more!
https://blog.securityonion.net/2021/03/security-onion-160473-iso-image-now.html -- Doug Burks Founder
unread,
Security Onion 16.04.7.3 ISO image now available featuring Zeek 3.0.13, Suricata 5.0.6, Elastic 7.10.2, and more!
https://blog.securityonion.net/2021/03/security-onion-160473-iso-image-now.html -- Doug Burks Founder
3/15/21
eric.va...@intricatesecurity.com
3/14/21
Install git over Security Onion 1
I am upgrading over top of my Security Onion on Ubuntu 16.04 and get about 78% the way through and it
unread,
Install git over Security Onion 1
I am upgrading over top of my Security Onion on Ubuntu 16.04 and get about 78% the way through and it
3/14/21
Justin Engbroten
3/13/21
Need Advice
So we had Elastic services go down after updating and they were down for approx 19 hours. Of course,
unread,
Need Advice
So we had Elastic services go down after updating and they were down for approx 19 hours. Of course,
3/13/21
Mat
, …
Doug Burks
7
3/12/21
Logstash errors
If the elastic instance is yellow, then you'll want to check the elasticsearch logs for any
unread,
Logstash errors
If the elastic instance is yellow, then you'll want to check the elasticsearch logs for any
3/12/21
Doug Burks
3/11/21
Official Security Onion 2 AMI now available in AWS Marketplace!
Official Security Onion 2 AMI now available in AWS Marketplace! https://securityonion.net/aws/?ref=
unread,
Official Security Onion 2 AMI now available in AWS Marketplace!
Official Security Onion 2 AMI now available in AWS Marketplace! https://securityonion.net/aws/?ref=
3/11/21
Doug Burks
3/4/21
Suricata 5.0.6 now available for Security Onion 16.04!
https://blog.securityonion.net/2021/03/suricata-506-now-available-for-security.html -- Doug Burks
unread,
Suricata 5.0.6 now available for Security Onion 16.04!
https://blog.securityonion.net/2021/03/suricata-506-now-available-for-security.html -- Doug Burks
3/4/21