An error appears during installation that prevents it from finishing
Provide the output of the following commands
Get operating system and version
for linux (except Mac) use: cat /etc/os-release
for Mac/OSX use: sw_vers
Get disk space, memory, processor cores, and docker storage echo -e "\nDocker Space:" && df -h /var/lib/docker; echo -e "\nMemory:" && free -g; echo -e "\nCores:" && getconf _NPROCESSORS_ONLN
Get output of the HELK docker containers: docker ps --filter "name=helk"
Disk space, memory etc:
Docker Space:
Filesystem Size Used Avail Use% Mounted on
/dev/nvme0n1p1 30G 8.6G 21G 30% /
-e
Memory:
total used free shared buff/cache available
Mem: 62 0 53 0 7 60
Swap: 0 0 0
-e
Cores:
8
Output of HELK docker containers:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
ebcaf95115c1 docker.elastic.co/elasticsearch/elasticsearch:7.6.2 "/usr/share/elastics…" 17 hours ago Restarting (1) 57 seconds ago helk-elasticsearch
Provide the HELK installation logs located at /var/log/helk-install.log if you are having install errors
Place the output here
latest: Pulling from otrf/helk-elastalert
Digest: sha256:689fba01b8b238c7a5a0e41b20f1990318c74c0102c6178189baa28037c5c8a7
Status: Downloaded newer image for otrf/helk-elastalert:latest
Creating helk-elasticsearch ... done
Creating helk-kibana ... error
ERROR: for helk-kibana Cannot start service helk-kibana: OCI runtime create failed: container_linux.go:349: starting container process caused "exec: \"/usr/share/kibana/scripts/kibana-entrypoint.sh\": stat /usr/share/kibana/scripts/kibana-entrypoint.sh: permission denied": unknown
ERROR: for helk-kibana Cannot start service helk-kibana: OCI runtime create failed: container_linux.go:349: starting container process caused "exec: \"/usr/share/kibana/scripts/kibana-entrypoint.sh\": stat /usr/share/kibana/scripts/kibana-entrypoint.sh: permission denied": unknown
Encountered errors while bringing up the project.
What version of HELK are you using
run the command from within the HELK root directory cat .git/refs/heads/master
and include what date you cloned the HELK repo
5300a2bb27072033932b796ca93254441d8c1e4c
Place the date here
21/10/2020
What version of Winlogbeat are you using if you are using Windows/WEF logs
Place the version here
N/A
What steps did you take trying to fix the issue
create the folder structure for /usr/share/kibana/scripts/kibana-entrypoint.sh, copy the script there and ensure there are enough permissions
Test with different docker-compose options
Redeploy OS from scratch
How could we replicate the issue
I tried replicating in my home lab with the same server OS version and the installation was successful.
Any additionally code or log context you would like to provide
txapel91
commented
3 years ago
Describe the problem
An error appears during installation that prevents it from finishing
Provide the output of the following commands
Get operating system and version for linux (except Mac) use:
cat /etc/os-releasefor Mac/OSX use:
sw_versGet disk space, memory, processor cores, and docker storage
echo -e "\nDocker Space:" && df -h /var/lib/docker; echo -e "\nMemory:" && free -g; echo -e "\nCores:" && getconf _NPROCESSORS_ONLNGet output of the HELK docker containers:
docker ps --filter "name=helk"OS Version: NAME="Ubuntu" VERSION="18.04.5 LTS (Bionic Beaver)" ID=ubuntu ID_LIKE=debian PRETTY_NAME="Ubuntu 18.04.5 LTS" VERSION_ID="18.04" HOME_URL="https://www.ubuntu.com/" SUPPORT_URL="https://help.ubuntu.com/" BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/" PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy" VERSION_CODENAME=bionic UBUNTU_CODENAME=bionic
Disk space, memory etc: Docker Space: Filesystem Size Used Avail Use% Mounted on /dev/nvme0n1p1 30G 8.6G 21G 30% / -e Memory: total used free shared buff/cache available Mem: 62 0 53 0 7 60 Swap: 0 0 0 -e Cores: 8
Output of HELK docker containers: CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ebcaf95115c1 docker.elastic.co/elasticsearch/elasticsearch:7.6.2 "/usr/share/elastics…" 17 hours ago Restarting (1) 57 seconds ago helk-elasticsearch
Provide the HELK installation logs located at /var/log/helk-install.log if you are having install errors
latest: Pulling from otrf/helk-elastalert Digest: sha256:689fba01b8b238c7a5a0e41b20f1990318c74c0102c6178189baa28037c5c8a7 Status: Downloaded newer image for otrf/helk-elastalert:latest Creating helk-elasticsearch ... done Creating helk-kibana ... error
ERROR: for helk-kibana Cannot start service helk-kibana: OCI runtime create failed: container_linux.go:349: starting container process caused "exec: \"/usr/share/kibana/scripts/kibana-entrypoint.sh\": stat /usr/share/kibana/scripts/kibana-entrypoint.sh: permission denied": unknown
ERROR: for helk-kibana Cannot start service helk-kibana: OCI runtime create failed: container_linux.go:349: starting container process caused "exec: \"/usr/share/kibana/scripts/kibana-entrypoint.sh\": stat /usr/share/kibana/scripts/kibana-entrypoint.sh: permission denied": unknown Encountered errors while bringing up the project.
What version of HELK are you using
run the command from within the HELK root directory
cat .git/refs/heads/masterand include what date you cloned the HELK repo
21/10/2020
What version of Winlogbeat are you using if you are using Windows/WEF logs
N/A
What steps did you take trying to fix the issue
create the folder structure for /usr/share/kibana/scripts/kibana-entrypoint.sh, copy the script there and ensure there are enough permissions
Test with different docker-compose options
Redeploy OS from scratch
How could we replicate the issue
Any additionally code or log context you would like to provide
Any additional context or input you have
pictures, comments, etc.
The server is in AWS