davidjiglesias commented 5 months ago

Description

This issue attempts to ensure the publication process was correct, attempting checks and live tests for published packages and images.

Tasks

[x] Ensure that production files are present.
[x] Deploy the Wazuh Installation Assistant and check the version installed is 4.7.5.
[x] AMD64 Live installation test.
- https://ci.wazuh.info/job/Test_install_tier/927/
[x] WPK versions check.
[x] WPK upgrade test.
- [x] Linux
- [x] MacOS Intel
- [x] ~MacOS Apple Silicon~
- [x] Windows
[x] AMI published.
[x] Puppet forge module published.
[x] Docker images published.

jnasselle commented 5 months ago

Ensure that production files are present.

``` root@wazuh-dev:~# aws s3 ls packages.wazuh.com/4.x/ --recursive --summarize --human-readable | grep "4.7.5" 2024-05-30 11:51:10 13.5 MiB 4.x/aix/wazuh-agent-4.7.5-1.aix.ppc.rpm 2024-05-30 11:54:32 6.4 MiB 4.x/alpine/v3.12/main/aarch64/wazuh-agent-4.7.5-r1.apk 2024-05-30 11:54:46 6.3 MiB 4.x/alpine/v3.12/main/armhf/wazuh-agent-4.7.5-r1.apk 2024-05-30 11:55:04 5.8 MiB 4.x/alpine/v3.12/main/armv7/wazuh-agent-4.7.5-r1.apk 2024-05-30 11:55:16 6.8 MiB 4.x/alpine/v3.12/main/ppc64le/wazuh-agent-4.7.5-r1.apk 2024-05-30 11:54:03 7.1 MiB 4.x/alpine/v3.12/main/x86/wazuh-agent-4.7.5-r1.apk 2024-05-30 11:53:15 6.7 MiB 4.x/alpine/v3.12/main/x86_64/wazuh-agent-4.7.5-r1.apk 2024-05-30 12:38:08 8.9 MiB 4.x/apt/pool/main/w/wazuh-agent/wazuh-agent_4.7.5-1_amd64.deb 2024-05-30 12:38:09 4.9 MiB 4.x/apt/pool/main/w/wazuh-agent/wazuh-agent_4.7.5-1_arm64.deb 2024-05-30 12:38:11 4.6 MiB 4.x/apt/pool/main/w/wazuh-agent/wazuh-agent_4.7.5-1_armhf.deb 2024-05-30 12:38:13 9.4 MiB 4.x/apt/pool/main/w/wazuh-agent/wazuh-agent_4.7.5-1_i386.deb 2024-05-30 12:38:19 5.5 MiB 4.x/apt/pool/main/w/wazuh-agent/wazuh-agent_4.7.5-1_ppc64el.deb 2024-05-30 12:40:44 172.1 MiB 4.x/apt/pool/main/w/wazuh-dashboard/wazuh-dashboard_4.7.5-1_amd64.deb 2024-05-30 12:52:35 654.4 MiB 4.x/apt/pool/main/w/wazuh-indexer/wazuh-indexer_4.7.5-1_amd64.deb 2024-05-30 13:23:08 164.0 MiB 4.x/apt/pool/main/w/wazuh-manager/wazuh-manager_4.7.5-1_amd64.deb 2024-05-30 13:23:41 113.4 MiB 4.x/apt/pool/main/w/wazuh-manager/wazuh-manager_4.7.5-1_arm64.deb 2024-05-30 11:55:36 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/aarch64/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:55:42 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/armhf/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:55:49 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/armv7/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:55:56 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/ppc64le/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:55:29 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/x86/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:55:22 155 Bytes 4.x/checksums/wazuh/4.7.5/alpine/x86_64/wazuh-agent-4.7.5-r1.apk.sha512 2024-05-30 11:51:58 148 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-4.7.5-1.zip.sha512 2024-05-30 11:53:51 146 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-4.7.5.ova.sha512 2024-05-30 11:51:54 169 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1-hpux-11v3-ia64.tar.sha512 2024-05-30 12:51:38 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.aarch64.rpm.sha512 2024-05-30 11:51:51 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.aix.ppc.rpm.sha512 2024-05-30 11:52:12 160 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.arm64.pkg.sha512 2024-05-30 12:51:44 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.armv7hl.rpm.sha512 2024-05-30 11:57:56 163 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.el5.i386.rpm.sha512 2024-05-30 11:57:50 165 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.el5.x86_64.rpm.sha512 2024-05-30 12:51:25 159 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.i386.rpm.sha512 2024-05-30 11:52:24 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.intel64.pkg.sha512 2024-05-30 11:51:50 154 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.msi.sha512 2024-05-30 12:51:57 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.ppc64le.rpm.sha512 2024-05-30 12:51:18 161 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent-4.7.5-1.x86_64.rpm.sha512 2024-05-30 13:41:00 160 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_4.7.5-1_amd64.deb.sha512 2024-05-30 13:41:21 160 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_4.7.5-1_arm64.deb.sha512 2024-05-30 13:41:28 160 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_4.7.5-1_armhf.deb.sha512 2024-05-30 13:41:07 159 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_4.7.5-1_i386.deb.sha512 2024-05-30 13:41:41 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_4.7.5-1_ppc64el.deb.sha512 2024-05-30 11:52:02 164 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_v4.7.5-sol10-i386.pkg.sha512 2024-05-30 11:51:50 165 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_v4.7.5-sol10-sparc.pkg.sha512 2024-05-30 11:51:49 164 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_v4.7.5-sol11-i386.p5p.sha512 2024-05-30 11:51:49 165 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-agent_v4.7.5-sol11-sparc.p5p.sha512 2024-05-30 12:52:11 165 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-dashboard-4.7.5-1.x86_64.rpm.sha512 2024-05-30 13:41:55 164 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-dashboard_4.7.5-1_amd64.deb.sha512 2024-05-30 12:52:04 163 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-indexer-4.7.5-1.x86_64.rpm.sha512 2024-05-30 13:41:48 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-indexer_4.7.5-1_amd64.deb.sha512 2024-05-30 12:51:51 164 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-manager-4.7.5-1.aarch64.rpm.sha512 2024-05-30 12:51:31 163 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-manager-4.7.5-1.x86_64.rpm.sha512 2024-05-30 13:41:13 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-manager_4.7.5-1_amd64.deb.sha512 2024-05-30 13:41:34 162 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-manager_4.7.5-1_arm64.deb.sha512 2024-05-30 11:51:49 155 Bytes 4.x/checksums/wazuh/4.7.5/wazuh-wazuh-4.7.5.tar.gz.sha512 2024-05-30 11:52:12 166 Bytes 4.x/checksums/wazuh/4.7.5/wazuh_agent_v4.7.5_linux_x86_64.wpk.sha512 2024-05-30 11:51:50 166 Bytes 4.x/checksums/wazuh/4.7.5/wazuh_agent_v4.7.5_macos_x86_64.wpk.sha512 2024-05-30 11:52:09 161 Bytes 4.x/checksums/wazuh/4.7.5/wazuh_agent_v4.7.5_windows.wpk.sha512 2024-05-30 11:51:08 52.7 MiB 4.x/hp-ux/wazuh-agent-4.7.5-1-hpux-11v3-ia64.tar 2024-05-30 11:51:09 5.5 MiB 4.x/macos/wazuh-agent-4.7.5-1.arm64.pkg 2024-05-30 11:51:33 5.9 MiB 4.x/macos/wazuh-agent-4.7.5-1.intel64.pkg 2024-05-30 11:51:10 56.8 KiB 4.x/puppet-module/wazuh-wazuh-4.7.5.tar.gz 2024-05-30 11:51:10 14.9 MiB 4.x/solaris/i386/10/wazuh-agent_v4.7.5-sol10-i386.pkg 2024-05-30 11:51:09 6.2 MiB 4.x/solaris/i386/11/wazuh-agent_v4.7.5-sol11-i386.p5p 2024-05-30 11:51:09 15.8 MiB 4.x/solaris/sparc/10/wazuh-agent_v4.7.5-sol10-sparc.pkg 2024-05-30 11:51:08 6.1 MiB 4.x/solaris/sparc/11/wazuh-agent_v4.7.5-sol11-sparc.p5p 2024-05-30 11:51:09 150.9 MiB 4.x/stack/dashboard/wazuh-dashboard-base-4.7.5-1-linux-x64.tar.xz 2024-05-30 11:52:05 655.3 MiB 4.x/stack/indexer/wazuh-indexer-base-4.7.5-1-linux-x64.tar.xz 2024-05-30 11:51:09 36.1 MiB 4.x/ui/dashboard/wazuh-4.7.5-1.zip 2024-05-30 11:51:08 2.7 GiB 4.x/vm/wazuh-4.7.5.ova 2024-05-30 11:51:09 6.2 MiB 4.x/windows/wazuh-agent-4.7.5-1.msi 2024-05-30 11:51:21 23.5 MiB 4.x/wpk/linux/x86_64/wazuh_agent_v4.7.5_linux_x86_64.wpk 2024-05-30 11:51:19 5.9 MiB 4.x/wpk/macos/x86_64/pkg/wazuh_agent_v4.7.5_macos_x86_64.wpk 2024-05-30 11:51:19 5.9 MiB 4.x/wpk/windows/wazuh_agent_v4.7.5_windows.wpk 2024-05-30 12:50:16 8.9 MiB 4.x/yum/wazuh-agent-4.7.5-1.aarch64.rpm 2024-05-30 12:50:16 8.3 MiB 4.x/yum/wazuh-agent-4.7.5-1.armv7hl.rpm 2024-05-30 12:50:17 9.4 MiB 4.x/yum/wazuh-agent-4.7.5-1.i386.rpm 2024-05-30 12:50:17 6.9 MiB 4.x/yum/wazuh-agent-4.7.5-1.ppc64le.rpm 2024-05-30 12:50:18 9.0 MiB 4.x/yum/wazuh-agent-4.7.5-1.x86_64.rpm 2024-05-30 12:50:18 264.5 MiB 4.x/yum/wazuh-dashboard-4.7.5-1.x86_64.rpm 2024-05-30 12:50:27 673.2 MiB 4.x/yum/wazuh-indexer-4.7.5-1.x86_64.rpm 2024-05-30 12:50:53 193.4 MiB 4.x/yum/wazuh-manager-4.7.5-1.aarch64.rpm 2024-05-30 12:51:00 165.3 MiB 4.x/yum/wazuh-manager-4.7.5-1.x86_64.rpm 2024-05-30 11:57:42 8.0 MiB 4.x/yum5/i386/wazuh-agent-4.7.5-1.el5.i386.rpm 2024-05-30 11:57:44 7.4 MiB 4.x/yum5/x86_64/wazuh-agent-4.7.5-1.el5.x86_64.rpm root@wazuh-dev:~# aws s3 ls packages.wazuh.com/4.x/ --recursive --summarize --human-readable | grep "4.8.0" 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.0.4-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.0.5-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.0.6-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.0.7-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.0.8-1.tar.gz.sha512 2023-12-20 07:12:22 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.0.4-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.0.5-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.0.6-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.0.7-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.0.8-1.tar.gz root@wazuh-dev:~# aws s3 ls packages.wazuh.com/4.x/ --recursive --summarize --human-readable | grep "4.8.1" 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.1.0-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.1.1-1.tar.gz.sha512 2023-12-20 07:11:08 164 Bytes 4.x/checksums/wazuh/4.1.4/wazuh_splunk-4.1.4_8.1.2-1.tar.gz.sha512 2023-12-20 07:11:13 164 Bytes 4.x/checksums/wazuh/4.2.4/wazuh_splunk-4.2.4_8.1.4-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.1-1.tar.gz.sha512 2023-12-20 07:11:28 165 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.10-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.2-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.3-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.4-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.5-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.6-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.7-1.tar.gz.sha512 2023-12-20 07:11:28 166 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.7.1-1.tar.gz.sha512 2023-12-20 07:11:28 166 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.7.2-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.8-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.1.9-1.tar.gz.sha512 2023-12-20 07:11:45 162 Bytes 4.x/checksums/wazuh/4.4.4/wazuh_splunk-4.4.4_8.1-1.tar.gz.sha512 2023-12-20 07:11:55 162 Bytes 4.x/checksums/wazuh/4.5.4/wazuh_splunk-4.5.4_8.1-1.tar.gz.sha512 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.1.0-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.1.1-1.tar.gz 2023-12-20 07:12:23 2.3 MiB 4.x/ui/splunk/wazuh_splunk-4.1.4_8.1.2-1.tar.gz 2023-12-20 07:12:24 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.2.4_8.1.4-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.1-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.10-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.2-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.3-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.4-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.5-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.6-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.7-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.7.1-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.7.2-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.8-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.1.9-1.tar.gz 2023-12-20 07:12:34 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.4.4_8.1-1.tar.gz 2023-12-20 07:12:34 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.5.4_8.1-1.tar.gz root@wazuh-dev:~# aws s3 ls packages.wazuh.com/4.x/ --recursive --summarize --human-readable | grep "4.8.2" 2023-12-20 11:30:41 478.2 MiB 4.x/apt/pool/main/w/wazuh-indexer/wazuh-indexer_4.4.0-1.1.1.todelete_amd64.deb 2023-12-20 07:11:13 164 Bytes 4.x/checksums/wazuh/4.2.4/wazuh_splunk-4.2.4_8.2.2-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.0-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.1-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.2-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.3-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.4-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.5-1.tar.gz.sha512 2023-12-20 07:11:28 164 Bytes 4.x/checksums/wazuh/4.3.4/wazuh_splunk-4.3.4_8.2.6-1.tar.gz.sha512 2023-12-20 07:11:45 162 Bytes 4.x/checksums/wazuh/4.4.4/wazuh_splunk-4.4.4_8.2-1.tar.gz.sha512 2023-12-20 07:11:55 162 Bytes 4.x/checksums/wazuh/4.5.4/wazuh_splunk-4.5.4_8.2-1.tar.gz.sha512 2023-12-20 07:12:24 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.2.4_8.2.2-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.0-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.1-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.2-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.3-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.4-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.5-1.tar.gz 2023-12-20 07:12:29 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.3.4_8.2.6-1.tar.gz 2023-12-20 07:12:34 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.4.4_8.2-1.tar.gz 2023-12-20 07:12:34 2.4 MiB 4.x/ui/splunk/wazuh_splunk-4.5.4_8.2-1.tar.gz root@wazuh-dev:~# aws s3 ls packages.wazuh.com/4.x/ --recursive --summarize --human-readable | grep "4.9.0" ```

jnasselle commented 5 months ago

Deploy the Wazuh Installation Assistant and check the version installed is 4.7.5

- CentOS 7 ``` [vagrant@centos7 ~]$ curl -sO https://packages.wazuh.com/4.7/wazuh-install.sh && sudo bash ./wazuh-install.sh -a -i 30/05/2024 18:08:09 INFO: Starting Wazuh installation assistant. Wazuh version: 4.7.5 30/05/2024 18:08:09 INFO: Verbose logging redirected to /var/log/wazuh-install.log 30/05/2024 18:08:15 WARNING: Hardware and system checks ignored. 30/05/2024 18:08:15 INFO: Wazuh web interface port will be 443. 30/05/2024 18:08:16 WARNING: The system has Firewalld enabled. Please ensure that traffic is allowed on these ports: 1515, 1514, 443. 30/05/2024 18:08:16 INFO: Wazuh repository added. 30/05/2024 18:08:16 INFO: --- Configuration files --- 30/05/2024 18:08:16 INFO: Generating configuration files. 30/05/2024 18:08:17 INFO: Created wazuh-install-files.tar. It contains the Wazuh cluster key, certificates, and passwords necessary for installation. 30/05/2024 18:08:17 INFO: --- Wazuh indexer --- 30/05/2024 18:08:17 INFO: Starting Wazuh indexer installation. 30/05/2024 18:09:54 INFO: Wazuh indexer installation finished. 30/05/2024 18:09:54 INFO: Wazuh indexer post-install configuration finished. 30/05/2024 18:09:54 INFO: Starting service wazuh-indexer. 30/05/2024 18:10:08 INFO: wazuh-indexer service started. 30/05/2024 18:10:08 INFO: Initializing Wazuh indexer cluster security settings. 30/05/2024 18:10:18 INFO: Wazuh indexer cluster initialized. 30/05/2024 18:10:18 INFO: --- Wazuh server --- 30/05/2024 18:10:18 INFO: Starting the Wazuh manager installation. 30/05/2024 18:11:11 INFO: Wazuh manager installation finished. 30/05/2024 18:11:11 INFO: Starting service wazuh-manager. 30/05/2024 18:11:27 INFO: wazuh-manager service started. 30/05/2024 18:11:27 INFO: Starting Filebeat installation. 30/05/2024 18:11:40 INFO: Filebeat installation finished. 30/05/2024 18:11:41 INFO: Filebeat post-install configuration finished. 30/05/2024 18:11:41 INFO: Starting service filebeat. 30/05/2024 18:11:41 INFO: filebeat service started. 30/05/2024 18:11:41 INFO: --- Wazuh dashboard --- 30/05/2024 18:11:41 INFO: Starting Wazuh dashboard installation. 30/05/2024 18:13:21 INFO: Wazuh dashboard installation finished. 30/05/2024 18:13:21 INFO: Wazuh dashboard post-install configuration finished. 30/05/2024 18:13:21 INFO: Starting service wazuh-dashboard. 30/05/2024 18:13:21 INFO: wazuh-dashboard service started. 30/05/2024 18:13:47 INFO: Initializing Wazuh dashboard web application. 30/05/2024 18:13:48 INFO: Wazuh dashboard web application initialized. 30/05/2024 18:13:48 INFO: --- Summary --- 30/05/2024 18:13:48 INFO: You can access the web interface https://:443 User: admin Password: SBXj8lsJMCH?jBHXJtryWjfQrf92l+B8 30/05/2024 18:13:48 INFO: Installation finished. ``` - Ubuntu 22.04 ``` vagrant@ubuntu-jammy:~$ curl -sO https://packages.wazuh.com/4.7/wazuh-install.sh && sudo bash ./wazuh-install.sh -a -i 30/05/2024 18:11:45 INFO: Starting Wazuh installation assistant. Wazuh version: 4.7.5 30/05/2024 18:11:45 INFO: Verbose logging redirected to /var/log/wazuh-install.log 30/05/2024 18:12:10 WARNING: Hardware and system checks ignored. 30/05/2024 18:12:10 INFO: Wazuh web interface port will be 443. 30/05/2024 18:12:14 INFO: --- Dependencies ---- 30/05/2024 18:12:14 INFO: Installing apt-transport-https. 30/05/2024 18:12:22 INFO: Wazuh repository added. 30/05/2024 18:12:22 INFO: --- Configuration files --- 30/05/2024 18:12:22 INFO: Generating configuration files. 30/05/2024 18:12:24 INFO: Created wazuh-install-files.tar. It contains the Wazuh cluster key, certificates, and passwords necessary for installation. 30/05/2024 18:12:24 INFO: --- Wazuh indexer --- 30/05/2024 18:12:24 INFO: Starting Wazuh indexer installation. 30/05/2024 18:13:36 INFO: Wazuh indexer installation finished. 30/05/2024 18:13:36 INFO: Wazuh indexer post-install configuration finished. 30/05/2024 18:13:36 INFO: Starting service wazuh-indexer. 30/05/2024 18:13:55 INFO: wazuh-indexer service started. 30/05/2024 18:13:55 INFO: Initializing Wazuh indexer cluster security settings. 30/05/2024 18:14:05 INFO: Wazuh indexer cluster initialized. 30/05/2024 18:14:05 INFO: --- Wazuh server --- 30/05/2024 18:14:05 INFO: Starting the Wazuh manager installation. 30/05/2024 18:14:48 INFO: Wazuh manager installation finished. 30/05/2024 18:14:48 INFO: Starting service wazuh-manager. 30/05/2024 18:15:06 INFO: wazuh-manager service started. 30/05/2024 18:15:06 INFO: Starting Filebeat installation. 30/05/2024 18:15:15 INFO: Filebeat installation finished. 30/05/2024 18:15:16 INFO: Filebeat post-install configuration finished. 30/05/2024 18:15:16 INFO: Starting service filebeat. 30/05/2024 18:15:16 INFO: filebeat service started. 30/05/2024 18:15:16 INFO: --- Wazuh dashboard --- 30/05/2024 18:15:16 INFO: Starting Wazuh dashboard installation. 30/05/2024 18:15:55 INFO: Wazuh dashboard installation finished. 30/05/2024 18:15:55 INFO: Wazuh dashboard post-install configuration finished. 30/05/2024 18:15:55 INFO: Starting service wazuh-dashboard. 30/05/2024 18:15:56 INFO: wazuh-dashboard service started. 30/05/2024 18:16:20 INFO: Initializing Wazuh dashboard web application. 30/05/2024 18:16:21 INFO: Wazuh dashboard web application initialized. 30/05/2024 18:16:21 INFO: --- Summary --- 30/05/2024 18:16:21 INFO: You can access the web interface https://:443 User: admin Password: ymwZIO?946Jjg9g2dIc3diUNZHs.q5Rs 30/05/2024 18:16:21 INFO: Installation finished. ```

WPK versions check

- https://packages.wazuh.com/4.x/wpk/windows/versions - https://packages.wazuh.com/4.x/wpk/linux/x86_64/versions - https://packages.wazuh.com/4.x/wpk/macos/x86_64/pkg/versions Everyone has the proper v4.7.5 entry

jnasselle commented 5 months ago

AMI published.

jnasselle commented 5 months ago

macOS AMD64 :green_circle:

root@macos-14 ~ # /Library/Ossec/bin/wazuh-control info
WAZUH_VERSION="v4.7.4"
WAZUH_REVISION="40717"
WAZUH_TYPE="agent"

root@macos-14 ~ # cat /Library/Ossec/logs/upgrade.log
2024/05/30 12:10:51 - Generating Backup.
tar: Removing leading '/' from member names
a Library/Ossec/active-response
a Library/Ossec/active-response/bin
a Library/Ossec/active-response/bin/restart.sh
a Library/Ossec/active-response/bin/firewall-drop
a Library/Ossec/active-response/bin/host-deny
a Library/Ossec/active-response/bin/firewalld-drop
a Library/Ossec/active-response/bin/kaspersky.py
a Library/Ossec/active-response/bin/default-firewall-drop
a Library/Ossec/active-response/bin/npf
a Library/Ossec/active-response/bin/pf
a Library/Ossec/active-response/bin/ip-customblock
a Library/Ossec/active-response/bin/ipfw
a Library/Ossec/active-response/bin/route-null
a Library/Ossec/active-response/bin/restart-wazuh
a Library/Ossec/active-response/bin/wazuh-slack
a Library/Ossec/active-response/bin/kaspersky
a Library/Ossec/active-response/bin/disable-account
a Library/Ossec/bin
a Library/Ossec/bin/wazuh-control
a Library/Ossec/bin/wazuh-logcollector
a Library/Ossec/bin/wazuh-execd
a Library/Ossec/bin/wazuh-syscheckd
a Library/Ossec/bin/manage_agents
a Library/Ossec/bin/agent-auth
a Library/Ossec/bin/wazuh-agentd
a Library/Ossec/bin/wazuh-modulesd
a Library/Ossec/etc
a Library/Ossec/etc/internal_options.conf
a Library/Ossec/etc/wpk_root.pem
a Library/Ossec/etc/localtime
a Library/Ossec/etc/shared
a Library/Ossec/etc/ossec.conf
a Library/Ossec/etc/local_internal_options.conf
a Library/Ossec/etc/client.keys
a Library/Ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt
a Library/Ossec/etc/shared/win_audit_rcl.txt
a Library/Ossec/etc/shared/rootkit_trojans.txt
a Library/Ossec/etc/shared/agent.conf
a Library/Ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt
a Library/Ossec/etc/shared/cis_rhel6_linux_rcl.txt
a Library/Ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt
a Library/Ossec/etc/shared/cis_apache2224_rcl.txt
a Library/Ossec/etc/shared/win_applications_rcl.txt
a Library/Ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt
a Library/Ossec/etc/shared/cis_rhel5_linux_rcl.txt
a Library/Ossec/etc/shared/cis_debian_linux_rcl.txt
a Library/Ossec/etc/shared/system_audit_rcl.txt
a Library/Ossec/etc/shared/merged.mg
a Library/Ossec/etc/shared/win_malware_rcl.txt
a Library/Ossec/etc/shared/ar.conf
a Library/Ossec/etc/shared/cis_rhel7_linux_rcl.txt
a Library/Ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt
a Library/Ossec/etc/shared/system_audit_ssh.txt
a Library/Ossec/etc/shared/cis_mysql5-6_community_rcl.txt
a Library/Ossec/etc/shared/cis_sles12_linux_rcl.txt
a Library/Ossec/etc/shared/cis_rhel_linux_rcl.txt
a Library/Ossec/etc/shared/rootkit_files.txt
a Library/Ossec/etc/shared/cis_sles11_linux_rcl.txt
a Library/Ossec/lib
a Library/Ossec/lib/libfimdb.dylib
a Library/Ossec/lib/libwazuhshared.dylib
a Library/Ossec/lib/libsysinfo.dylib
a Library/Ossec/lib/libdbsync.dylib
a Library/Ossec/lib/librsync.dylib
a Library/Ossec/lib/libsyscollector.dylib
a Library/Ossec/lib/libwazuhext.dylib
a Library/Ossec/queue
a Library/Ossec/queue/sockets
a Library/Ossec/queue/alerts
a Library/Ossec/queue/syscollector
a Library/Ossec/queue/fim
a Library/Ossec/queue/logcollector
a Library/Ossec/queue/rids
a Library/Ossec/queue/rids/sender_counter
a Library/Ossec/queue/rids/001
a Library/Ossec/queue/logcollector/file_status.json
a Library/Ossec/queue/fim/db
a Library/Ossec/queue/fim/db/fim.db-journal
a Library/Ossec/queue/fim/db/fim.db
a Library/Ossec/queue/syscollector/db
a Library/Ossec/queue/syscollector/norm_config.json
a Library/Ossec/queue/syscollector/db/local.db-journal
a Library/Ossec/queue/syscollector/db/local.db
a Library/Ossec/queue/alerts/execqtar: Library/Ossec/queue/alerts/execq: Library/Ossec/queue/alerts/execq: pax format cannot archive sockets

a Library/Ossec/queue/alerts/cfgaqtar: Library/Ossec/queue/alerts/cfgaq: Library/Ossec/queue/alerts/cfgaq: pax format cannot archive sockets

a Library/Ossec/queue/sockets/syschecktar: Library/Ossec/queue/sockets/syscheck: Library/Ossec/queue/sockets/syscheck: pax format cannot archive sockets

a Library/Ossec/queue/sockets/upgradetar: Library/Ossec/queue/sockets/upgrade: Library/Ossec/queue/sockets/upgrade: pax format cannot archive sockets

a Library/Ossec/queue/sockets/wmodulestar: Library/Ossec/queue/sockets/wmodules: Library/Ossec/queue/sockets/wmodules: pax format cannot archive sockets

a Library/Ossec/queue/sockets/queuetar: Library/Ossec/queue/sockets/queue: Library/Ossec/queue/sockets/queue: pax format cannot archive sockets

a Library/Ossec/queue/sockets/.agent_info
a Library/Ossec/queue/sockets/logcollectortar: Library/Ossec/queue/sockets/logcollector: Library/Ossec/queue/sockets/logcollector: pax format cannot archive sockets

a Library/Ossec/queue/sockets/controltar: Library/Ossec/queue/sockets/control: Library/Ossec/queue/sockets/control: pax format cannot archive sockets

a Library/Ossec/queue/sockets/comtar: Library/Ossec/queue/sockets/com: Library/Ossec/queue/sockets/com: pax format cannot archive sockets

a Library/Ossec/ruleset
a Library/Ossec/ruleset/sca
a Library/Ossec/ruleset/sca/cis_apple_macOS_14.0.yml
a Library/Ossec/wodles
a Library/Ossec/wodles/gcloud
a Library/Ossec/wodles/docker
a Library/Ossec/wodles/azure
a Library/Ossec/wodles/init.py
a Library/Ossec/wodles/utils.py
a Library/Ossec/wodles/aws
a Library/Ossec/wodles/aws/aws-s3
a Library/Ossec/wodles/azure/orm.py
a Library/Ossec/wodles/azure/azure-logs
a Library/Ossec/wodles/docker/DockerListener
a Library/Ossec/wodles/gcloud/gcloud
a Library/Ossec/wodles/gcloud/buckets
a Library/Ossec/wodles/gcloud/tools.py
a Library/Ossec/wodles/gcloud/integration.py
a Library/Ossec/wodles/gcloud/pubsub
a Library/Ossec/wodles/gcloud/exceptions.py
a Library/Ossec/wodles/gcloud/pubsub/subscriber.py
a Library/Ossec/wodles/gcloud/buckets/bucket.py
a Library/Ossec/wodles/gcloud/buckets/access_logs.py
a Library/Ossec/agentless
a Library/Ossec/agentless/ssh.exp
a Library/Ossec/agentless/ssh_pixconfig_diff
a Library/Ossec/agentless/ssh_integrity_check_bsd
a Library/Ossec/agentless/ssh_generic_diff
a Library/Ossec/agentless/ssh_integrity_check_linux
a Library/Ossec/agentless/ssh_asa-fwsmconfig_diff
a Library/Ossec/agentless/main.exp
a Library/Ossec/agentless/ssh_nopass.exp
a Library/Ossec/agentless/ssh_foundry_diff
a Library/Ossec/agentless/register_host.sh
a Library/Ossec/agentless/sshlogin.exp
a Library/Ossec/agentless/su.exp
a Library/Ossec/logs/wazuh
a Library/Ossec/var/selinux
a Library/LaunchDaemons/com.wazuh.agent.plist
a Library/StartupItems/WAZUH
a Library/StartupItems/WAZUH/Wazuh-launcher
a Library/StartupItems/WAZUH/StartupParameters.plist
a Library/StartupItems/WAZUH/WAZUH
2024/05/30 12:10:52 - Backup generated in /Library/Ossec/backup/backup_[05-30-2024_12-10-51].tar.gz
2024/05/30 12:10:52 - Upgrade started.
installer: Package name is Wazuh Agent
installer: Upgrading at base path /
installer: The upgrade was successful.
2024/05/30 12:11:07 - Installation result = 0
2024/05/30 12:11:07 - Waiting connection... Remaining attempts: 30.
2024/05/30 12:11:08 - Status = connected.
2024/05/30 12:11:08 - Connected to manager.
2024/05/30 12:11:08 - Upgrade finished successfully.

root@macos-14 ~ # /Library/Ossec/bin/wazuh-control info
WAZUH_VERSION="v4.7.5"
WAZUH_REVISION="40720"
WAZUH_TYPE="agent"
root@macos-14 ~ #

[root@ip-172-31-42-103 centos]# /var/ossec/bin/agent_control -i 001
Wazuh agent_control. Agent information:
Agent ID: 001
Agent Name: macos-14
IP address: any
Status: Active

Operating system: Darwin |macos-14 |23.4.0 |Darwin Kernel Version 23.4.0: Fri Mar 15 00:11:05 PDT 2024; root:xnu-10063.101.17~1/RELEASE_X86_64 |x86_64
Client version: Wazuh v4.7.5
Configuration hash: ab73af41699f13fdd81903b5f23d8d00
Shared file hash: 4a8724b20dee0124ff9656783c490c4e
Last keep alive: 1717096785

Syscheck last started at: Thu May 30 19:11:01 2024
Syscheck last ended at: Thu May 30 19:11:10 2024

[root@ip-172-31-42-103 centos]# /var/ossec/bin/agent_upgrade -a 001

Upgrading...

Failed upgrades:
Agent 001 status: Timeout reached while waiting for the response from the agent

damarisg commented 5 months ago

Windows 10 🟢

Wazuh 4.7.4 - Agent

![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/3eff72de-ca92-487e-a2c8-372238109116) ![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/616e4268-f1a6-41b5-bc2d-b22294da9251)

Upgrade to Wazuh 4.7.5 - Agent

![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/2b827c35-0afd-4c04-942b-0f2da9db16ea) ![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/630f948e-2c49-49b8-ac5b-b5be6d8a8bb9)

Upgrade.log

> 2024-05-30 17:58:01Z - Sysnative Powershell will be used to access the registry. > 2024-05-30 17:58:01Z - Current version: v4.7.4. > 2024-05-30 17:58:01Z - Generating backup. > 2024-05-30 17:58:01Z - Backing up Wazuh home files. > 2024-05-30 17:58:42Z - Searching Wazuh-Agent cached MSI through the registry. > 2024-05-30 17:58:44Z - Backing up Wazuh-Agent cached MSI: "C:\Windows\Installer\a32bdb.msi". > 2024-05-30 17:58:54Z - Trying to stop Wazuh service. > 2024-05-30 17:59:59Z - Trying to stop Wazuh service again. Remaining attempts: 5. > 2024-05-30 18:00:01Z - Trying to stop Wazuh service again. Remaining attempts: 4. > 2024-05-30 18:00:03Z - Trying to stop Wazuh service again. Remaining attempts: 3. > 2024-05-30 18:00:05Z - Trying to stop Wazuh service again. Remaining attempts: 2. > 2024-05-30 18:00:07Z - Trying to stop Wazuh service again. Remaining attempts: 1. > 2024-05-30 18:00:09Z - Killing process. > 2024-05-30 18:00:47Z - Starting upgrade processs. > 2024-05-30 18:03:08Z - Restarting Wazuh-Agent service. > 2024-05-30 18:03:15Z - Installation finished. > 2024-05-30 18:03:16Z - Process ID: 4412. > 2024-05-30 18:06:54Z - Reading status file: status='connected'. > 2024-05-30 18:07:08Z - Upgrade finished successfully. > 2024-05-30 18:07:09Z - New version: v4.7.5. >

Check Errors on Agent

![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/35cf5e6e-e487-4df5-8908-d90840b89a70) ![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/01e8978d-37bb-468f-b6a8-884026f10621) ![imagen](https://github.com/wazuh/wazuh-qa/assets/3978434/250382e5-1a78-410b-8b60-85f7da802d77)

damarisg commented 5 months ago

CentOS 8 🟢

Wazuh 4.7.4 - Agent

> [root@localhost ~]# /var/ossec/bin/wazuh-control info > WAZUH_VERSION="v4.7.4" > WAZUH_REVISION="40717" > WAZUH_TYPE="agent"

Check on Manager

> [root@localhost vagrant]# /var/ossec/bin/agent_control -i 002 > > Wazuh agent_control. Agent information: > Agent ID: 002 > Agent Name: agent > IP address: any > Status: Active > > Operating system: Linux |agent |4.18.0-240.1.1.el8_3.x86_64 |#1 SMP Thu Nov 19 17:20:08 UTC 2020 |x86_64 > Client version: Wazuh v4.7.4 > Configuration hash: ab73af41699f13fdd81903b5f23d8d00 > Shared file hash: 4a8724b20dee0124ff9656783c490c4e > Last keep alive: 1717096270 > > Syscheck last started at: Thu May 30 19:11:11 2024 (Scan in progress) > Syscheck last ended at: Unknown

Upgrade to Wazuh 4.7.5 - Agent

On Manager > [root@localhost vagrant]# /var/ossec/bin/agent_upgrade -a 002 -F > > Upgrading... > > > Upgraded agents: > Agent 002 upgraded: Wazuh v4.7.5 -> Wazuh v4.7.5 Check on Agent > [root@localhost ~]# /var/ossec/bin/wazuh-control info > WAZUH_VERSION="v4.7.5" > WAZUH_REVISION="40720" > WAZUH_TYPE="agent"

Upgrade.log - Agent

/var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:24:16 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-24-14].tar.gz 2024/05/30 19:24:16 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:25:05 - Installation result = 0 2024/05/30 19:25:05 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:25:06 - Status = connected. 2024/05/30 19:25:06 - Connected to manager. 2024/05/30 19:25:06 - Upgrade finished successfully. 2024/05/30 19:32:45 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/restart.sh tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/default-firewall-drop /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-syscheckd /var/ossec/bin/wazuh-execd /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-agentd /var/ossec/bin/agent-auth /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/local_internal_options.conf /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/localtime /var/ossec/etc/internal_options.conf~ /var/ossec/etc/internal_options.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/lib/libdbsync.so /var/ossec/lib/librsync.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libsyscollector.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libgcc_s.so.1 /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/__init__.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:32:47 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-32-45].tar.gz 2024/05/30 19:32:47 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:33:40 - Installation result = 0 2024/05/30 19:33:40 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:33:41 - Status = connected. 2024/05/30 19:33:41 - Connected to manager. 2024/05/30 19:33:41 - Upgrade finished successfully. [root@localhost ~]# cat /var/ossec/logs/upgrade.log 2024/05/30 19:24:14 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/default-firewall-drop tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/restart.sh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/agent-auth /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-agentd /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-execd /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-syscheckd /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/internal_options.conf /var/ossec/etc/local_internal_options.conf /var/ossec/etc/localtime /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libdbsync.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libgcc_s.so.1 /var/ossec/lib/librsync.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libsyscollector.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/__init__.py /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:24:16 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-24-14].tar.gz 2024/05/30 19:24:16 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:25:05 - Installation result = 0 2024/05/30 19:25:05 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:25:06 - Status = connected. 2024/05/30 19:25:06 - Connected to manager. 2024/05/30 19:25:06 - Upgrade finished successfully. 2024/05/30 19:32:45 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/restart.sh tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/default-firewall-drop /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-syscheckd /var/ossec/bin/wazuh-execd /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-agentd /var/ossec/bin/agent-auth /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/local_internal_options.conf /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/localtime /var/ossec/etc/internal_options.conf~ /var/ossec/etc/internal_options.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/lib/libdbsync.so /var/ossec/lib/librsync.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libsyscollector.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libgcc_s.so.1 /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/__init__.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:32:47 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-32-45].tar.gz 2024/05/30 19:32:47 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:33:40 - Installation result = 0 2024/05/30 19:33:40 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:33:41 - Status = connected. 2024/05/30 19:33:41 - Connected to manager. 2024/05/30 19:33:41 - Upgrade finished successfully. [root@localhost ~]# cat /var/ossec/logs/upgrade.log 2024/05/30 19:24:14 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/default-firewall-drop tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/restart.sh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/agent-auth /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-agentd /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-execd /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-syscheckd /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/internal_options.conf /var/ossec/etc/local_internal_options.conf /var/ossec/etc/localtime /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libdbsync.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libgcc_s.so.1 /var/ossec/lib/librsync.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libsyscollector.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/__init__.py /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:24:16 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-24-14].tar.gz 2024/05/30 19:24:16 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:25:05 - Installation result = 0 2024/05/30 19:25:05 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:25:06 - Status = connected. 2024/05/30 19:25:06 - Connected to manager. 2024/05/30 19:25:06 - Upgrade finished successfully. 2024/05/30 19:32:45 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/restart.sh tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/default-firewall-drop /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-syscheckd /var/ossec/bin/wazuh-execd /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-agentd /var/ossec/bin/agent-auth /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/local_internal_options.conf /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/localtime /var/ossec/etc/internal_options.conf~ /var/ossec/etc/internal_options.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/lib/libdbsync.so /var/ossec/lib/librsync.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libsyscollector.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libgcc_s.so.1 /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/__init__.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:32:47 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-32-45].tar.gz 2024/05/30 19:32:47 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:33:40 - Installation result = 0 2024/05/30 19:33:40 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:33:41 - Status = connected. 2024/05/30 19:33:41 - Connected to manager. 2024/05/30 19:33:41 - Upgrade finished successfully. [root@localhost ~]# cat /var/ossec/logs/upgrade.log 2024/05/30 19:24:14 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/default-firewall-drop tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/restart.sh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/agent-auth /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-agentd /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-execd /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-syscheckd /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/internal_options.conf /var/ossec/etc/local_internal_options.conf /var/ossec/etc/localtime /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libdbsync.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libgcc_s.so.1 /var/ossec/lib/librsync.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libsyscollector.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/__init__.py /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:24:16 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-24-14].tar.gz 2024/05/30 19:24:16 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:25:05 - Installation result = 0 2024/05/30 19:25:05 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:25:06 - Status = connected. 2024/05/30 19:25:06 - Connected to manager. 2024/05/30 19:25:06 - Upgrade finished successfully. 2024/05/30 19:32:45 - Generating Backup. tar: Removing leading `/' from member names /var/ossec/active-response/ /var/ossec/active-response/bin/ /var/ossec/active-response/bin/restart.sh tar: Removing leading `/' from hard link targets /var/ossec/active-response/bin/kaspersky.py /var/ossec/active-response/bin/firewall-drop /var/ossec/active-response/bin/default-firewall-drop /var/ossec/active-response/bin/pf /var/ossec/active-response/bin/npf /var/ossec/active-response/bin/ipfw /var/ossec/active-response/bin/firewalld-drop /var/ossec/active-response/bin/disable-account /var/ossec/active-response/bin/host-deny /var/ossec/active-response/bin/ip-customblock /var/ossec/active-response/bin/restart-wazuh /var/ossec/active-response/bin/route-null /var/ossec/active-response/bin/kaspersky /var/ossec/active-response/bin/wazuh-slack /var/ossec/bin/ /var/ossec/bin/wazuh-logcollector /var/ossec/bin/wazuh-syscheckd /var/ossec/bin/wazuh-execd /var/ossec/bin/manage_agents /var/ossec/bin/wazuh-control /var/ossec/bin/wazuh-modulesd /var/ossec/bin/wazuh-agentd /var/ossec/bin/agent-auth /var/ossec/etc/ /var/ossec/etc/client.keys /var/ossec/etc/local_internal_options.conf /var/ossec/etc/ossec.conf /var/ossec/etc/shared/ /var/ossec/etc/shared/cis_win2012r2_memberL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_memberL2_rcl.txt /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt /var/ossec/etc/shared/win_applications_rcl.txt /var/ossec/etc/shared/win_audit_rcl.txt /var/ossec/etc/shared/win_malware_rcl.txt /var/ossec/etc/shared/merged.mg /var/ossec/etc/shared/ar.conf /var/ossec/etc/shared/agent.conf /var/ossec/etc/shared/cis_apache2224_rcl.txt /var/ossec/etc/shared/cis_debian_linux_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_community_rcl.txt /var/ossec/etc/shared/cis_mysql5-6_enterprise_rcl.txt /var/ossec/etc/shared/cis_rhel5_linux_rcl.txt /var/ossec/etc/shared/cis_rhel6_linux_rcl.txt /var/ossec/etc/shared/cis_rhel7_linux_rcl.txt /var/ossec/etc/shared/cis_rhel_linux_rcl.txt /var/ossec/etc/shared/cis_sles11_linux_rcl.txt /var/ossec/etc/shared/cis_sles12_linux_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL1_rcl.txt /var/ossec/etc/shared/cis_win2012r2_domainL2_rcl.txt /var/ossec/etc/localtime /var/ossec/etc/internal_options.conf~ /var/ossec/etc/internal_options.conf /var/ossec/etc/wpk_root.pem /var/ossec/lib/ /var/ossec/lib/libwazuhext.so /var/ossec/lib/libwazuhshared.so /var/ossec/lib/libdbsync.so /var/ossec/lib/librsync.so /var/ossec/lib/libsysinfo.so /var/ossec/lib/libfimdb.so /var/ossec/lib/libsyscollector.so /var/ossec/lib/libstdc++.so.6 /var/ossec/lib/libgcc_s.so.1 /var/ossec/queue/ /var/ossec/queue/alerts/ tar: /var/ossec/queue/alerts/execq: socket ignored tar: /var/ossec/queue/alerts/cfgaq: socket ignored /var/ossec/queue/fim/ /var/ossec/queue/fim/db/ /var/ossec/queue/fim/db/fim.db-journal /var/ossec/queue/fim/db/fim.db /var/ossec/queue/logcollector/ /var/ossec/queue/logcollector/file_status.json /var/ossec/queue/rids/ /var/ossec/queue/rids/002 /var/ossec/queue/rids/sender_counter /var/ossec/queue/sockets/ /var/ossec/queue/sockets/.agent_info tar: /var/ossec/queue/sockets/com: socket ignored tar: /var/ossec/queue/sockets/queue: socket ignored tar: /var/ossec/queue/sockets/syscheck: socket ignored tar: /var/ossec/queue/sockets/logcollector: socket ignored tar: /var/ossec/queue/sockets/wmodules: socket ignored tar: /var/ossec/queue/sockets/upgrade: socket ignored tar: /var/ossec/queue/sockets/control: socket ignored /var/ossec/queue/syscollector/ /var/ossec/queue/syscollector/db/ /var/ossec/queue/syscollector/db/local.db-journal /var/ossec/queue/syscollector/db/local.db /var/ossec/queue/syscollector/norm_config.json /var/ossec/ruleset/ /var/ossec/ruleset/sca/ /var/ossec/ruleset/sca/cis_centos8_linux.yml /var/ossec/wodles/ /var/ossec/wodles/aws/ /var/ossec/wodles/aws/aws-s3 /var/ossec/wodles/azure/ /var/ossec/wodles/azure/azure-logs /var/ossec/wodles/azure/orm.py /var/ossec/wodles/docker/ /var/ossec/wodles/docker/DockerListener /var/ossec/wodles/gcloud/ /var/ossec/wodles/gcloud/buckets/ /var/ossec/wodles/gcloud/buckets/bucket.py /var/ossec/wodles/gcloud/buckets/access_logs.py /var/ossec/wodles/gcloud/pubsub/ /var/ossec/wodles/gcloud/pubsub/subscriber.py /var/ossec/wodles/gcloud/gcloud /var/ossec/wodles/gcloud/integration.py /var/ossec/wodles/gcloud/tools.py /var/ossec/wodles/gcloud/exceptions.py /var/ossec/wodles/__init__.py /var/ossec/wodles/utils.py /var/ossec/agentless/ /var/ossec/agentless/main.exp /var/ossec/agentless/register_host.sh /var/ossec/agentless/ssh_asa-fwsmconfig_diff /var/ossec/agentless/ssh.exp /var/ossec/agentless/ssh_foundry_diff /var/ossec/agentless/ssh_generic_diff /var/ossec/agentless/ssh_integrity_check_bsd /var/ossec/agentless/ssh_integrity_check_linux /var/ossec/agentless/sshlogin.exp /var/ossec/agentless/ssh_nopass.exp /var/ossec/agentless/ssh_pixconfig_diff /var/ossec/agentless/su.exp /var/ossec/logs/wazuh/ /var/ossec/var/selinux/ /var/ossec/var/selinux/wazuh.pp /usr/lib/systemd/system/wazuh-agent.service 2024/05/30 19:32:47 - Backup generated in /var/ossec/backup/backup_[05-30-2024_19-32-45].tar.gz 2024/05/30 19:32:47 - Upgrade started. Wazuh v4.7.5 (Rev. 40720) Installation Script - https://www.wazuh.com You are about to start the installation process of Wazuh. You must have a C compiler pre-installed in your system. - System: Linux agent 4.18.0-240.1.1.el8_3.x86_64 (centos 8.3) - User: root - Host: agent -- Press ENTER to continue or Ctrl-C to abort. -- - You already have Wazuh installed. Do you want to update it? (y/n): - Installation will be made at /var/ossec . 4- Installing the system DIR="/var/ossec" - Running the Makefile Stopping Wazuh... agent Wait for success... success Removing old SCA policies... Installing SCA policies... Wait for success... success Starting Wazuh... - Configuration finished properly. - To start Wazuh: /var/ossec/bin/wazuh-control start - To stop Wazuh: /var/ossec/bin/wazuh-control stop - The configuration can be viewed or modified at /var/ossec/etc/ossec.conf Thanks for using Wazuh. Please don't hesitate to contact us if you need help or find any bugs. Use our public Mailing List at: https://groups.google.com/forum/#!forum/wazuh More information can be found at: - http://www.wazuh.com --- Press ENTER to finish (maybe more information below). --- - Update completed. 2024/05/30 19:33:40 - Installation result = 0 2024/05/30 19:33:40 - Waiting connection... Remaining attempts: 30. 2024/05/30 19:33:41 - Status = connected. 2024/05/30 19:33:41 - Connected to manager. 2024/05/30 19:33:41 - Upgrade finished successfully.

jnasselle commented 5 months ago

LGTM!

damarisg commented 5 months ago

LGTM!

wazuh / wazuh-qa

Post publication live checks for 4.7.5 #5446

Description

Tasks

macOS AMD64 :green_circle:

Windows 10 🟢

CentOS 8 🟢