[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-onion
Subject:    Re: [security-onion] error writing a log file from logstash process - user, access outside of docker
From:       "don m." <donmrdch () gmail ! com>
Date:       2018-09-24 22:26:00
Message-ID: fbfd9f2e-4965-4e89-8b6a-9d25ca9908eb () googlegroups ! com
[Download RAW message or body]


Reporting back that this worked, after some work.  I modified the \
/usr/sbin/so-logstash-start script, not 100% sure this worked by editing \
/etc/nsm/securityonion.conf although I tried. 

I also moved the directory to the logstash group. Directory is 777, will try to pair \
that back and report next steps. Nonetheless, I am in fact getting my palo traffic \
and threat log = but POST logstash, so I have lots of extra stuff in there.

-- 
Follow Security Onion on Twitter!
https://twitter.com/securityonion
--- 
You received this message because you are subscribed to the Google Groups \
"security-onion" group. To unsubscribe from this group and stop receiving emails from \
it, send an email to security-onion+unsubscribe@googlegroups.com. To post to this \
group, send email to security-onion@googlegroups.com. Visit this group at \
https://groups.google.com/group/security-onion. For more options, visit \
https://groups.google.com/d/optout.



[prev in list] [next in list] [prev in thread] [next in thread]