empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
442e03b276
fleet/articles/fleet-3.6.0.md
Mike Thomas bf11f2df66
Articles housekeeping (#6389) 
* Articles housekeeping

Style tweaks:

- reduced categories-and-search margin-top
- changed color of category on cards
- removed time stamps from cards

Image updates:
- created missing images, and replaced existing with a cleaner, more vibrant style to the following categories.
    - security
    - guides
    - engineering
    - podcasts
- Normalized release thumbnails. The current graphics are over-designed, inconsistent, and too busy/hard to process.

* lint fix

* remove ")" from image caption

* remove old article images

* update cover image filenames for consistency

* add deleted image, update filenames to match naming conventions

* fix typo in filename

Co-authored-by: Eric <eashaw@sailsjs.com>
2022-06-28 16:18:41 -05:00

3.1 KiB
Raw Blame History

leet 3.6.0

Were excited to announce Fleet 3.6.0, which includes easier first-time setup, more flexible configuration, Amazon S3 integration for file carving, and more!

Lets jump into the highlights…

  • S3 buckets as file carving storage
  • Build a Docker container with Fleet running as a non-root user
  • Read in the MySQL password and JSON Web Token from a file

For the complete summary of changes check out the release notes on GitHub.

Amazon S3 buckets as file carving storage

Thank you Matteo Piano from Yelp! This awesome contribution adds the ability to set up Amazon S3 at the storage backend for file carving.

Prior to these changes, file carving in Fleet could only be saved to the Fleet database. A couple of concerns with this limitation [were surfaced by the Fleet community and Matteos contribution kicks off the ability to add more backends in the future.

Check out the new documentation on how to configure Fleet so file carving data is stored in an S3 bucket.

Build a Docker container with Fleet running as a non-root user Shoutout to Ben Bornholm! The author of the sweet holdmybeersecurity.com packed in two contributions for this release. The first allows Fleet users to build the Docker container with Fleet running as a non-root user, an upgrade that aligns Fleet with Docker best practices.

Read in the MySQL password and JSON Web Token from a file The second of Bens contributions adds support to read in your MySQL password and JWT from a file. With this addition, Fleet users can avoid storing secrets in a static configuration file or in environment variables.

Using Docker secrets for supplying the above credentials is an example use case of reading in such credentials.

mysql:
  address: mysql:3306  
  database: fleet
  username: fleet
  password_path: /run/secrets/mysql-fleetdm-password
redis:
  address: redis:6379
server:
  address: 0.0.0.0:8080
  cert: /run/secrets/fleetdm-tls-cert
  key: /run/secrets/fleetdm-tls-key
auth:
  jwt_key_path: /run/secrets/fleetdm-jwt-key
filesystem:
  status_log_file: /var/log/osquery/status.log
  result_log_file: /var/log/osquery/result.log
  enable_log_rotation: true
logging:
  json: true

Ready to update?

Visit our update guide in the Fleet docs for instructions on updating to Fleet 3.6.0.