Commit Graph

978 Commits

Author SHA1 Message Date
Antigoni Sinanis
93fad49b6c
Create CODE_OF_CONDUCT.md (#1722) 2018-03-07 09:23:20 -05:00
Zachary Wasserman
23a12b2ab0
Add check for Duo SAML vulnerability (not vulnerable) (#1718)
See https://goo.gl/zuku4E.

> The most obvious remediation here is ensuring your SAML library is extracting
  the full text of a given XML element when comments are present.

Our implementation asks for the innerxml of the NameID field, so it returns the
entire text including the comment (See https://goo.gl/KLLXof). By default Go's
XML parsing would return the text not including the comment (but including
further text after the comment). Both of these options prevent the
vulnerability.
2018-03-02 09:44:23 -07:00
Ben Coverston
d28d2cac28 Add FileAccesses to FIM Configuration (#1717)
- Close #1708
- Fix FIM interval not being stored
2018-02-26 12:54:13 -08:00
Zachary Wasserman
2e9598de66
Merge decorators into other config options (#1707) 2018-02-09 11:35:09 -08:00
Jack
998e81db6d Remove fixed height constraint from host details component. (#1706)
If some elements content extends beyond the assumed height it will overflow outside of the details block.

These changes remove any height limit, allowing flexbox to even the details height per row. Removing justify centre keeps the header in place at the top for details that are smaller than the max height in other blocks on that row.

Used flex 1 to expand the hosts details list elements to the remaining space in the details component. Can make for some odd spacing but seems nicer than bunching elements at the top of the component.
2018-02-08 08:07:47 -08:00
Mike Arpaia
bcd59e2188
Use Kolide version of go-bindata after it got leftpaded (#1704) 2018-02-07 08:58:17 -07:00
Mike Arpaia
accaffce74
Fix dep warnings (#1698) 2018-02-05 10:40:58 -07:00
dso
c017779313 Populate network interfaces on Windows (#1700)
Add support for Windows hosts in addition to macOS and Linux.
2018-02-04 21:16:24 -08:00
Zachary Wasserman
ae5d8e4acb
Add community section to README (#1695) 2018-01-31 17:00:30 -08:00
Victor Vrantchan
381c6f1384
separate the docker build step from the docker push step (#1691)
Allows users without write access to docker hub to still build the container.
2018-01-23 16:31:42 -05:00
Zachary Wasserman
e3d2af325c
Use UUID as host identifier in adding hosts docs (#1690) 2018-01-23 09:26:32 -08:00
Zachary Wasserman
bde7256a09
Update labels interfaces for fleetctl (#1686)
- Remove unnecessary labels code
- Remove unnecessary packs code
- Update tests as appropriate
2018-01-10 11:38:20 -08:00
groob
19cb29375c add a mini faq 2018-01-04 09:19:50 -05:00
Zachary Wasserman
26dc30bd25
Update query and pack interfaces for fleetctl (#1670)
- Add new Apply spec methods for queries and packs
- Remove now extraneous datastore/service methods
- Remove import service (unused, and had many dependencies that this breaks)
- Refactor tests as appropriate
2018-01-03 11:18:05 -08:00
Zachary Wasserman
77b16e92e0
Fix missing removed and shard keys in query packs (#1685)
Include the appropriate values for removed and shard when generating config
to return to osqueryd.

Note: This was originally fixed and tested in the fleetctl branch (#1680), and
the fix is being cherry-picked into master without the test.
2018-01-02 19:29:27 -08:00
Zachary Wasserman
d6b4de3874
Refactor osquery options interface (#1674)
After discussion with @groob and @marpaia, we have decided that the service
methods should not be aware of any YAML/JSON definitions, and should work
directly with objects. The new pattern we will use will involve converting YAML
to JSON at the client, and then sending the JSON which will be decoded using
the familiar go-kit mechanisms before being passed to the service methods.
2018-01-02 16:22:45 -08:00
Zachary Wasserman
2d3e5c11cb
Fix missing removed and shard keys in query packs (#1680)
Include the appropriate values for `removed` and `shard` when generating config
to return to osqueryd.
2018-01-02 16:06:50 -08:00
Zachary Eddy
6a20ae91c5 Create kubernetes manifest for minikube (#1671) 2017-12-28 11:18:16 -08:00
ferhat elmas
657494e504 server/datastore: add missing err check in label creation test (#1683) 2017-12-21 19:07:09 -08:00
ferhat elmas
d2a7e38c85 Fix documentation typos (#1682) 2017-12-21 18:37:32 -08:00
Clayton Burlison
a5e1007146 Fix typo in Makefile help (#1681) 2017-12-20 15:41:19 -08:00
Zachary Wasserman
a162ace30b
Update fleetctl docs (#1678)
- Revert erroneous changes in 6442736c.
- Remove Osquery prefix from entity kinds.
- Define Query first in combination with Label and Decorator definitions.
2017-12-19 15:03:45 -08:00
Scott J. Roberts
9c52bed855 Add flags for configuring MySQL connection pooling limits (#1672) 2017-12-19 13:52:52 -08:00
Zachary Wasserman
6442736c12
Replace mistaken uses of OsqueryQuery (#1677) 2017-12-19 13:13:17 -08:00
ferhat elmas
1bd622bce7 server/datastore/inmem: fix host removal lock (#1673) 2017-12-18 14:38:33 -08:00
Zachary Wasserman
74bd70f54f
Change default query editor query (#1669)
The existing query generates column name conflicts.
2017-12-14 21:39:55 -05:00
Zachary Wasserman
5e9fe9d5a1
Transition osquery options interfaces for compatibility with fleetctl (#1649)
- Refinements to options yaml definition
- Datastore and service implementations
- Migration to bring existing options into new table format
2017-12-13 18:14:54 -05:00
Victor Vrantchan
6d328ed70c
Write the raw status log to the writer (#1666)
Instead of trying to decode and re-encode status logs, we now write them directly as they come in.
This change prevents future changes to the osquery status log file format (addition and deletion of fields ) from
affecting Fleet. A similar change was implemented in #1636 for result logs.

Closes #1664
2017-12-12 10:43:33 -05:00
Mike Arpaia
45165aa29a
Update CHANGELOG for 1.0.6 (#1659) 2017-12-04 15:46:16 -07:00
ferhat elmas
9e0912e2f3 General simplification in go part (#1658)
* don't check if error is nil, return it
 * don't compare bool to bool, use it
 * don't supply capacity to make for slice when len
   is equal to cap
2017-12-04 09:43:43 -05:00
Victor Vrantchan
ca5f63dd4f
replace support email with github issue link (#1656) 2017-12-01 12:15:50 -05:00
Victor Vrantchan
0b5c3d4111
log the remote IP of the host making a request (#1653) 2017-11-30 19:52:23 -05:00
Matt Mencel
80767bcf8e Update fleet-deployment.yaml (#1652)
The helm deployment of the redis service creates a service called `fleet-cache-redis`.
2017-11-28 11:05:27 -05:00
Mike Arpaia
edca82eaf2 Revert "add remote ip address to service logs (#1635)" (#1651)
This reverts commit 11707132bd.
2017-11-27 17:56:09 -05:00
Mike Arpaia
63d60d5f6a
always generate new assets when building the binary bundle 2017-11-22 13:19:13 -07:00
Zachary Wasserman
2389e13d80
Fix redis_address documentation error (#1648)
Fixes #1647.
2017-11-20 16:43:03 -08:00
Mike Arpaia
ce61fe6adb
Fix typo 2017-11-20 10:00:08 -07:00
Victor Vrantchan
c08ba5eda9
update deps (#1637)
brings deps up to date for upcoming release.
2017-11-19 11:02:09 -05:00
Greg
cb3c14e16a Match release executable name to install commands (#1640)
Current fleet_latest.zip linux executable name is fleet_linux_amd64, which doesn't match sudo cp
2017-11-19 11:01:43 -05:00
Victor Vrantchan
8291119067
use json.RawMessage for result logs (#1636)
Initially fleet decoded the incoming JSON sent to the log endpoint.
Then the log event would be written to a log writer by calling json.Encoder{}.Encode.
Re-encoding logs is lossy; whenever a new field is sent by osqueryd we don't keep up with them.
Instead of caring about the content of the OsqueryResultLog, fleet will now write all log results
exactly as sent to the server by osqueryd.

Closes #1632
Closes #1615
2017-11-18 19:59:32 -05:00
Victor Vrantchan
b2771b80c0
rename old references to the binary (#1638) 2017-11-18 19:58:19 -05:00
Victor Vrantchan
11707132bd
add remote ip address to service logs (#1635)
Closes #1630
2017-11-18 18:41:23 -05:00
Mike Arpaia
3259e7149b
Documenting deploying Fleet on Kubernetes (#1626) 2017-11-17 12:48:59 -07:00
Zachary Wasserman
f909f4808b
Make OsqueryOptions hierarchical by platform (#1625)
- Allow overriding base config on a per-platform basis.
- Merge FIM configs into the OsqueryOptions object.
2017-11-16 10:58:47 -08:00
Mike Arpaia
907fbcca06
Add SAML bug fix to CHANGELOG 2017-11-16 09:56:23 -07:00
John Murphy
2840caff86 Fixed leaking http client (#1628)
close #1587
2017-11-16 09:53:42 -07:00
Mike Arpaia
b251366c1e
Each file resource should map to a Fleet data model object (#1627) 2017-11-15 21:23:37 -07:00
Mike Arpaia
607b9141ea
Remove OsqueryQueries file type (#1622) 2017-11-15 16:10:11 -07:00
Zachary Wasserman
80d31a2722
Minor copy edits to fleetctl docs (#1621) 2017-11-15 12:06:55 -08:00
Zachary Wasserman
923e4e1f08
Fix issue in which default query runs instead of entered query (#1616)
Verified to work in the following scenarios:
- Saved query loaded and run
- Saved query loaded, edited, and run
- New query edited and run

Closes #1611
2017-11-15 11:20:42 -08:00