Question about mongo db upgrade for usage of RITA on ubuntu 22.04 LTS

activecm / rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

GNU General Public License v3.0

2.51k stars 362 forks source link

Question about mongo db upgrade for usage of RITA on ubuntu 22.04 LTS #817

Open security-companion opened 1 year ago

security-companion commented 1 year ago

Hi, I was wondering if there are plans to update the used mongo db version so that RITA can be used on ubuntu 22.04 LTS. Currently it seems that MongoDB 4.2 is not supported on ubuntu 22.04 jammy. Greetings security-companion

security-companion commented 1 year ago

I saw that the install script has an option --disable-mongo Could I also install MongoDB indipendently on Ubuntu 22.04 and then use it with Rita? Which version of MongoDB would you recommend? Greetings Security-companion

SliuzasLukas commented 1 year ago

Hi @security-companion,

Personally I do --disable-zeek and --disable-mongo when installing rita. Look up how to install MongoDB using tar.gz file and just download 4.2 version from their website. Only issue I had was with missing package.

Do this before installing MongoDB echo "deb http://security.ubuntu.com/ubuntu focal-security main" | sudo tee /etc/apt/sources.list.d/focal-security.list sudo apt-get update sudo apt-get install libssl1.1