Elastic-test.git URL Replacment
60 views
Skip to first unread message
jg.hap...@gmail.com
Mar 14, 2018, 9:38:20 AM3/14/18
to security-onion
Good Afternoon All,
I am having numerous problems where I'm getting 401 authentication Errors when running "sudo soup". I've diagnosed the fault to being the GITURL for updates no longer exists.
/File Snippet:
/LOCATION: /etc/nsm/elasticdownload.conf
# Elastic Download
GITREPO="elastic-test"
GITURL="https://github.com/Security-Onion-Solutions/elastic-test.git"
DOCKERHUB="securityonionsolutions"
INSTALLED="yes"
That URL doesn't exist, if someone can please provide an indication of what that URL should be for the updates.
Thank you!
JG
I am having numerous problems where I'm getting 401 authentication Errors when running "sudo soup". I've diagnosed the fault to being the GITURL for updates no longer exists.
/File Snippet:
/LOCATION: /etc/nsm/elasticdownload.conf
# Elastic Download
GITREPO="elastic-test"
GITURL="https://github.com/Security-Onion-Solutions/elastic-test.git"
DOCKERHUB="securityonionsolutions"
INSTALLED="yes"
That URL doesn't exist, if someone can please provide an indication of what that URL should be for the updates.
Thank you!
JG
Wes Lambert
Mar 14, 2018, 9:48:02 AM3/14/18
to securit...@googlegroups.com
JG,
While I agree that that file should probably be updated, I don't think it should be affecting you at the moment, because I believe only the DOCKERHUB value is being used at the moment.
Could it be that you are behind a proxy?
Thanks,
Wes
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to security-onion@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.
jg.hap...@gmail.com
Mar 14, 2018, 10:20:42 AM3/14/18
to security-onion
On Wednesday, March 14, 2018 at 1:48:02 PM UTC, Wes wrote:
> JG,
>
>
> While I agree that that file should probably be updated, I don't think it should be affecting you at the moment, because I believe only the DOCKERHUB value is being used at the moment.
>
>
> Could it be that you are behind a proxy?
>
>
> Thanks,
> Wes
>
>
> On Wed, Mar 14, 2018 at 9:32 AM, <jg.hap...@gmail.com> wrote:
> Good Afternoon All,
>
>
>
> I am having numerous problems where I'm getting 401 authentication Errors when running "sudo soup". I've diagnosed the fault to being the GITURL for updates no longer exists.
>
>
>
>
>
> /File Snippet:
>
> /LOCATION: /etc/nsm/elasticdownload.conf
>
> # Elastic Download
>
> GITREPO="elastic-test"
>
> GITURL="https://github.com/Security-Onion-Solutions/elastic-test.git"
>
> DOCKERHUB="securityonionsolutions"
>
> INSTALLED="yes"
>
>
>
>
>
> That URL doesn't exist, if someone can please provide an indication of what that URL should be for the updates.
>
>
>
> Thank you!
>
>
>
> JG
>
>
>
> --
>
> Follow Security Onion on Twitter!
>
> https://twitter.com/securityonion
>
> ---
>
> You received this message because you are subscribed to the Google Groups "security-onion" group.
>
> To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
> JG,
>
>
> While I agree that that file should probably be updated, I don't think it should be affecting you at the moment, because I believe only the DOCKERHUB value is being used at the moment.
>
>
> Could it be that you are behind a proxy?
>
>
> Thanks,
> Wes
>
>
> On Wed, Mar 14, 2018 at 9:32 AM, <jg.hap...@gmail.com> wrote:
> Good Afternoon All,
>
>
>
> I am having numerous problems where I'm getting 401 authentication Errors when running "sudo soup". I've diagnosed the fault to being the GITURL for updates no longer exists.
>
>
>
>
>
> /File Snippet:
>
> /LOCATION: /etc/nsm/elasticdownload.conf
>
> # Elastic Download
>
> GITREPO="elastic-test"
>
> GITURL="https://github.com/Security-Onion-Solutions/elastic-test.git"
>
> DOCKERHUB="securityonionsolutions"
>
> INSTALLED="yes"
>
>
>
>
>
> That URL doesn't exist, if someone can please provide an indication of what that URL should be for the updates.
>
>
>
> Thank you!
>
>
>
> JG
>
>
>
> --
>
> Follow Security Onion on Twitter!
>
> https://twitter.com/securityonion
>
> ---
>
> You received this message because you are subscribed to the Google Groups "security-onion" group.
>
>
> To post to this group, send email to securit...@googlegroups.com.
>
> Visit this group at https://groups.google.com/group/security-onion.
>
> For more options, visit https://groups.google.com/d/optout.
My setup is very simple, I've got a CentOS Firewall box, and then a security onion appliance on my network. From my SO appliance, i'm able to pull down packages and updates, but can't get it to work for "sudo soup". I thought that it was because of the dead URL link above, but clearly not.
> Visit this group at https://groups.google.com/group/security-onion.
>
> For more options, visit https://groups.google.com/d/optout.
Do I need to put my Firewall IP into the configuration file of the docker containers for the proxy?
Thanks,
John
Wes Lambert
Mar 14, 2018, 10:25:07 AM3/14/18
to securit...@googlegroups.com
John,
Could you please post a specific example of the failure condition(s)/error message(s) you've mentioned?
Thanks,
Wes
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to security-onion@googlegroups.com.
jg.hap...@gmail.com
Mar 14, 2018, 10:44:33 AM3/14/18
to security-onion
JG@SO:/etc$ sudo soup
###########################################################################
SOUP - Security Onion UPdater
........
........
it will prompt you to reboot at the end.
###########################################################################
Press Enter to continue or Ctrl-C to cancel.
Checking for kernels that can be removed...
No kernels are eligible for removal
Checking for updates...
Checking Security Onion Docker image status...
you are not authorized to perform this operation: server returned 401.
so-curator has been updated.
you are not authorized to perform this operation: server returned 401.
so-domainstats has been updated.
you are not authorized to perform this operation: server returned 401.
so-elastalert has been updated.
you are not authorized to perform this operation: server returned 401.
so-elasticsearch has been updated.
you are not authorized to perform this operation: server returned 401.
so-freqserver has been updated.
you are not authorized to perform this operation: server returned 401.
so-kibana has been updated.
you are not authorized to perform this operation: server returned 401.
so-logstash has been updated.
Stopping Docker containers...
Attached is the redacted output.
Wes Lambert
Mar 14, 2018, 11:07:54 AM3/14/18
to securit...@googlegroups.com
Do you get the same error if you manually run the following/
sudo /usr/bin/docker pull --disable-content-trust=false securityonionsolutions/so-kibana
Thanks,
Wes
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to security-onion@googlegroups.com.
jg.hap...@gmail.com
Mar 14, 2018, 12:54:42 PM3/14/18
to security-onion
Yes, still have the same error sadly.
jg.hap...@gmail.com
Mar 14, 2018, 2:42:15 PM3/14/18
to security-onion
Any further guidance would be much appreciated!!
Wes Lambert
Mar 14, 2018, 2:47:38 PM3/14/18
to securit...@googlegroups.com
What happens if you do the following?
sudo /usr/bin/docker pull --disable-content-trust=true securityonionsolutions/so-kibana
On Wed, Mar 14, 2018 at 2:42 PM, <jg.hap...@gmail.com> wrote:
Any further guidance would be much appreciated!!
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to security-onion@googlegroups.com.
Wes Lambert
Mar 14, 2018, 2:49:44 PM3/14/18
to securit...@googlegroups.com
At any rate, it sounds like it may take less time and easier to reinstall from the latest ISO image.
On Wed, Mar 14, 2018 at 2:47 PM, Wes Lambert <wlamb...@gmail.com> wrote:
What happens if you do the following?sudo /usr/bin/docker pull --disable-content-trust=true securityonionsolutions/so-kibana
On Wed, Mar 14, 2018 at 2:42 PM, <jg.hap...@gmail.com> wrote:
Any further guidance would be much appreciated!!
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onion+unsubscribe@googlegroups.com.
To post to this group, send email to securit...@googlegroups.com.
Reply all
Reply to author
Forward
0 new messages