search

utmstack / UTMStack

Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence
https://utmstack.com
GNU Affero General Public License v3.0
209 stars 22 forks source link

[BUG] Bitdefender integration getting error URL must support TLS 1.2 #675

Closed agauttam closed 4 months ago

agauttam commented 4 months ago

Describe the bug

A clear and concise description of what the bug is.

Creating UTMConfigClient instance 2024-05-10T09:21:46.336022607Z ERROR dfae0671-b1eb-4cf0-a278-9f1444cacdc8 /home/runner/work/UTMStack/UTMStac k/bitdefender/configuration/config.go 44 error getting configuration of the Bitdefender module: Get "http:// backend:8080/api/utm-modules/module-details-decrypted?nameShort=BITDEFENDER&serverId=1": dial tcp: lookup ba ckend on 127.0.0.11:53: server misbehaving 2024-05-10T09:22:16.350688114Z ERROR 999bcdad-0190-4a52-822c-4a18fa158f59 /home/runner/work/UTMStack/UTMStac k/bitdefender/configuration/config.go 44 error getting configuration of the Bitdefender module: Get "http:// backend:8080/api/utm-modules/module-details-decrypted?nameShort=BITDEFENDER&serverId=1": dial tcp: lookup ba ckend on 127.0.0.11:53: server misbehaving 2024-05-10T09:22:46.439859381Z INFO 711eaeb8-ac38-4b3f-9d89-5f0540fdb2c3 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 57 new configuration found: groupName: Klenk und Sohn GmbH, master: sec tm.klenkfirm.de, CompanyIDs: 62bd69f13ad7b6891c0b1947 2024-05-10T09:22:46.439904581Z INFO b4e2a6df-b4e9-49c9-ba2d-58f5d49df41d /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 126 Sending configuration... 2024-05-10T09:22:51.619788906Z INFO 4063c375-20ee-468a-9758-9f3a98c0cba0 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 107 Status: 200 OK 2024-05-10T09:22:51.620081905Z INFO 7cb11d91-195b-428c-a5b1-d4b0bde48501 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 109 {"id":"1","jsonrpc":"2.0","error":{"code":-32602,"message":"Invalid params","data":{"details":"The web server with this URL must support TLS 1.2, at least"}}} 2024-05-10T09:23:06.629687356Z INFO 1063839b-2027-494e-a1ff-24918cae2f6e /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 138 Checking configuration... 2024-05-10T09:23:06.705932138Z INFO fd11dec5-4701-465d-8ec6-f92be0acf8c7 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 107 Status: 200 OK 2024-05-10T09:23:06.706184521Z INFO ef2c197e-62b4-49f8-99db-bcd6e5139fcb /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 109 {"id":"3","jsonrpc":"2.0","error":{"code":-32000,"message":"Server error","data":{"details":"Settings for event push service were not set"}}} 2024-05-10T09:23:06.706235718Z INFO 76bc07a6-9fb4-4b91-a820-d0c5a93d4b84 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 150 Sending Event Test... 2024-05-10T09:23:06.815002116Z INFO bfeb2f98-eb89-49f7-873e-4a55d0fc7a0a /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 107 Status: 200 OK 2024-05-10T09:23:06.815205803Z INFO 448998d5-b9d9-4c18-bab0-3f95a875c773 /home/runner/work/UTMStack/UTMStack /bitdefender/configuration/config.go 109 {"id":"4","jsonrpc":"2.0","result":{"computer_name":"FC-WIN7-X64-01 ","computer_fqdn":"fc-win7-x64-01","computer_ip":"10.17.46.196","computer_id":"59a1604e60369e06733f8abb","pr oduct_installed":"BEST","malware_type":"file","malware_name":"EICAR-Test-File (not a virus)","file_path":"C: \eicar0000001.txt","hash":"8b3f191819931d1f2cef7289239b5f77c00b079847b9c2636e56854d1e5eff71","final_status" :"deleted","timestamp":"2017-09-08T12:01:36.000Z","companyId":"62bd69f13ad7b6891c0b1947","module":"av","tes tEvent":true}}

To Reproduce

Steps to reproduce the behavior:

  1. Configure the bitdefender integration
agauttam commented 4 months ago

Issue is fixed after opening the port 8000.

Thanks