search

thomaspatzke / elk-detection-lab

An ELK environment containing interesting security datasets.
133 stars 25 forks source link

Installing on Windows with Docker (WSL2 backend) #2

Open 0xhido opened 4 years ago

0xhido commented 4 years ago

Hey, I'm trying to install the lab on my Windows machine but getting these errors on the loader and filebit containers:

Loader:

standard_init_linux.go:211: exec user process caused "no such file or directory"

Filebit:

2020-07-17T19:52:58.401Z INFO [monitoring] log/log.go:154 Uptime: 49.8493ms

2020-07-17T19:52:58.401Z INFO [monitoring] log/log.go:131 Stopping metrics logging.

2020-07-17T19:52:58.401Z INFO instance/beat.go:445 filebeat stopped.

2020-07-17T19:52:58.402Z ERROR instance/beat.go:933 Exiting: 1 error: invalid config: config file ("/usr/share/filebeat/modules.d/suricata.yml") can only be writable by the owner but the permissions are "-rwxrwxrwx" (to fix the permissions use: 'chmod go-w /usr/share/filebeat/modules.d/suricata.yml')

Exiting: 1 error: invalid config: config file ("/usr/share/filebeat/modules.d/suricata.yml") can only be writable by the owner but the permissions are "-rwxrwxrwx" (to fix the permissions use: 'chmod go-w /usr/share/filebeat/modules.d/suricata.yml')

Do you have any clue how to fix it?

MahmoudShoair commented 2 years ago

https://nickjanetakis.com/blog/a-linux-dev-environment-on-windows-with-wsl-2-docker-desktop-and-more this will solve your problem.