diff --git a/CHANGELOG.md b/CHANGELOG.md index 041bdef..9d3f3d1 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,19 @@ # Change Log All notable changes to this project will be documented in this file. +## Wazuh Docker v3.11.4_7.6.1 + +### Added + +- Update to Wazuh version 3.11.4_7.6.1 + +- Enable HTTP v2 on nginx ([@xr09](https://github.com/xr09)) [#308](https://github.com/wazuh/wazuh-docker/pull/308) + +### Fixed + +- Updated NGINX config syntax ([@xr09](https://github.com/xr09)) [#303](https://github.com/wazuh/wazuh-docker/pull/303) + + ## Wazuh Docker v3.11.3_7.5.2 ### Added diff --git a/VERSION b/VERSION index 7e59f57..217ddf1 100644 --- a/VERSION +++ b/VERSION @@ -1,2 +1,2 @@ -WAZUH-DOCKER_VERSION="3.11.3_7.5.2" -REVISION="31130" +WAZUH-DOCKER_VERSION="3.11.4_7.6.1" +REVISION="31140" diff --git a/docker-compose.yml b/docker-compose.yml index 54e11d7..09b6272 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -3,7 +3,7 @@ version: '2' services: wazuh: - image: wazuh/wazuh:3.11.3_7.5.2 + image: wazuh/wazuh:3.11.4_7.6.1 hostname: wazuh-manager restart: always ports: @@ -13,7 +13,7 @@ services: - "55000:55000" elasticsearch: - image: wazuh/wazuh-elasticsearch:3.11.3_7.5.2 + image: wazuh/wazuh-elasticsearch:3.11.4_7.6.1 hostname: elasticsearch restart: always ports: @@ -30,7 +30,7 @@ services: mem_limit: 2g kibana: - image: wazuh/wazuh-kibana:3.11.3_7.5.2 + image: wazuh/wazuh-kibana:3.11.4_7.6.1 hostname: kibana restart: always depends_on: @@ -38,8 +38,9 @@ services: links: - elasticsearch:elasticsearch - wazuh:wazuh + nginx: - image: wazuh/wazuh-nginx:3.11.3_7.5.2 + image: wazuh/wazuh-nginx:3.11.4_7.6.1 hostname: nginx restart: always environment: diff --git a/elasticsearch/Dockerfile b/elasticsearch/Dockerfile index 2c7eacb..28ed20a 100644 --- a/elasticsearch/Dockerfile +++ b/elasticsearch/Dockerfile @@ -1,5 +1,5 @@ # Wazuh Docker Copyright (C) 2019 Wazuh Inc. (License GPLv2) -ARG ELASTIC_VERSION=7.5.2 +ARG ELASTIC_VERSION=7.6.1 FROM docker.elastic.co/elasticsearch/elasticsearch:${ELASTIC_VERSION} ARG ELASTIC_VERSION ARG S3_PLUGIN_URL="https://artifacts.elastic.co/downloads/elasticsearch-plugins/repository-s3/repository-s3-${ELASTIC_VERSION}.zip" @@ -16,7 +16,7 @@ ENV XPACK_ML="true" ENV ENABLE_CONFIGURE_S3="false" -ARG TEMPLATE_VERSION=v3.11.3 +ARG TEMPLATE_VERSION=v3.11.4 # Elasticearch cluster configuration environment variables # If ELASTIC_CLUSTER is set to "true" the following variables will be added to the Elasticsearch configuration diff --git a/kibana/Dockerfile b/kibana/Dockerfile index 9c79c12..08e4137 100644 --- a/kibana/Dockerfile +++ b/kibana/Dockerfile @@ -1,15 +1,14 @@ # Wazuh Docker Copyright (C) 2019 Wazuh Inc. (License GPLv2) -FROM docker.elastic.co/kibana/kibana:7.5.2 +FROM docker.elastic.co/kibana/kibana:7.6.1 USER kibana -ARG ELASTIC_VERSION=7.5.2 -ARG WAZUH_VERSION=3.11.3 +ARG ELASTIC_VERSION=7.6.1 +ARG WAZUH_VERSION=3.11.4 ARG WAZUH_APP_VERSION="${WAZUH_VERSION}_${ELASTIC_VERSION}" -#ADD https://packages.wazuh.com/wazuhapp/wazuhapp-${WAZUH_APP_VERSION}.zip /usr/share/kibana/ - -RUN /usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-${WAZUH_APP_VERSION}.zip -# RUN rm -rf /tmp/wazuhapp-${WAZUH_APP_VERSION}.zip +WORKDIR /usr/share/kibana +RUN ./bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-${WAZUH_APP_VERSION}.zip +WORKDIR / USER root COPY config/entrypoint.sh ./entrypoint.sh RUN chmod 755 ./entrypoint.sh @@ -71,6 +70,6 @@ RUN chmod +x ./welcome_wazuh.sh RUN ./welcome_wazuh.sh USER kibana -RUN /usr/local/bin/kibana-docker --optimize +RUN NODE_OPTIONS="--max-old-space-size=2048" /usr/local/bin/kibana-docker --optimize ENTRYPOINT ./entrypoint.sh diff --git a/nginx/Dockerfile b/nginx/Dockerfile index 2ca20d6..65c235f 100644 --- a/nginx/Dockerfile +++ b/nginx/Dockerfile @@ -16,4 +16,4 @@ VOLUME ["/etc/nginx/conf.d"] ENV NGINX_NAME="foo" \ NGINX_PWD="bar" -ENTRYPOINT /entrypoint.sh +ENTRYPOINT [ "/entrypoint.sh" ] diff --git a/nginx/config/entrypoint.sh b/nginx/config/entrypoint.sh index 468c8a9..b7c23c6 100644 --- a/nginx/config/entrypoint.sh +++ b/nginx/config/entrypoint.sh @@ -30,14 +30,14 @@ if [ ! -f /etc/nginx/conf.d/kibana.htpasswd ]; then do IFS=':' read -r -a credentials <<< "${users[index]}" if [ $index -eq 0 ]; then - echo ${credentials[1]}|htpasswd -i -c /etc/nginx/conf.d/kibana.htpasswd ${credentials[0]} >/dev/null + htpasswd -b -c /etc/nginx/conf.d/kibana.htpasswd ${credentials[0]} ${credentials[1]} >/dev/null else - echo ${credentials[1]}|htpasswd -i /etc/nginx/conf.d/kibana.htpasswd ${credentials[0]} >/dev/null + htpasswd -b /etc/nginx/conf.d/kibana.htpasswd ${credentials[0]} ${credentials[1]} >/dev/null fi done else # NGINX_PWD and NGINX_NAME are declared in nginx/Dockerfile - echo $NGINX_PWD|htpasswd -i -c /etc/nginx/conf.d/kibana.htpasswd $NGINX_NAME >/dev/null + htpasswd -b -c /etc/nginx/conf.d/kibana.htpasswd $NGINX_NAME $NGINX_PWD >/dev/null fi else echo "Kibana credentials already configured" @@ -60,9 +60,8 @@ server { } server { - listen ${NGINX_PORT} default_server; - listen [::]:${NGINX_PORT}; - ssl on; + listen ${NGINX_PORT} default_server ssl http2; + listen [::]:${NGINX_PORT} ssl http2; ssl_certificate /etc/nginx/conf.d/ssl/certs/kibana-access.pem; ssl_certificate_key /etc/nginx/conf.d/ssl/private/kibana-access.key; location / { @@ -76,4 +75,4 @@ server { } EOF -nginx -g 'daemon off;' +exec nginx -g 'daemon off;' diff --git a/wazuh/Dockerfile b/wazuh/Dockerfile index e6d3e55..796659a 100644 --- a/wazuh/Dockerfile +++ b/wazuh/Dockerfile @@ -1,14 +1,14 @@ # Wazuh Docker Copyright (C) 2019 Wazuh Inc. (License GPLv2) FROM phusion/baseimage:latest -ARG FILEBEAT_VERSION=7.5.2 +ARG FILEBEAT_VERSION=7.6.1 -ARG WAZUH_VERSION=3.11.3-1 +ARG WAZUH_VERSION=3.11.4-1 ENV API_USER="foo" \ API_PASS="bar" -ARG TEMPLATE_VERSION="v3.11.3" +ARG TEMPLATE_VERSION="v3.11.4" # Set repositories. RUN set -x && echo "deb https://packages.wazuh.com/3.x/apt/ stable main" | tee /etc/apt/sources.list.d/wazuh.list && \