search

wazuh / wazuh-ansible

Wazuh - Ansible playbook
https://wazuh.com
Other
298 stars 191 forks source link

V4.8 / V4.9 / V5.0 var-ossec-etc-ossec-server.conf.j2 does not support offline update for cve #1258

Open Wykx-Sama opened 7 months ago

Wykx-Sama commented 7 months ago

Just noticed that the line for offline cve providing isn't in the template, i think it can be great to just leave it as a comment for ppl using Wazuh offline.

  <vulnerability-detection>
    <enabled>{{ wazuh_manager_config.vulnerability_detection.enabled }}</enabled>
    <indexer-status>{{ wazuh_manager_config.vulnerability_detection.indexer_status }}</indexer-status>
    <feed-update-interval>{{ wazuh_manager_config.vulnerability_detection.feed_update_interval }}</feed-update-interval>
  </vulnerability-detection>
Wykx-Sama commented 7 months ago

@

jonhattan commented 4 months ago

It would be great to configure offline cve from a single role variable.

In the meantime, here's a proposal to allow overriding any template from the calling playbook. This enables to configure it or any other thing. https://github.com/wazuh/wazuh-ansible/pull/1337