dmdm
03/13/2024, 2:59 PMnessuscli agent status
, which in output shows Link status: not linked to a manager
thor
wennan.he
03/13/2024, 11:25 PMTim Dittler
03/15/2024, 1:33 PMEvan Romasco-Kelly
03/15/2024, 9:21 PMosqueryi
, bash can’t find the command. Then, when I look at /opt/osquery/lib/
it’s empty, no <http://osquery.app|osquery.app>
. I have previously installed via Homebrew and had the same issue (after a number of initial successful installs/deinstalls when testing an osquery install script). Tried all sorts of cleanup steps to try and get a greenfield install, but nothing seems to be working.
Any idea what’s going on here?Pierre
03/17/2024, 10:31 PMGitHub
03/18/2024, 1:07 PM<https://github.com/osquery/osquery/tree/master|master>
by Smjert
<https://github.com/osquery/osquery/commit/dcd8594f8d8687cb13bc9540b5aad2c26c5f8d9e|dcd8594f>
- Downgrade sqlite to 3.42 to prevent a regression with required columns (#8295)
osquery/osquerydefensivedepth
03/20/2024, 6:02 PMwennan.he
03/20/2024, 10:57 PMwennan.he
03/21/2024, 1:15 AMJian Zheng
03/21/2024, 5:07 PMSteve Poe
03/21/2024, 11:20 PM<chrome://policy/>
Jian Zheng
03/22/2024, 6:20 PMRobert Soulé
03/23/2024, 6:58 PMJay
03/25/2024, 7:02 PMGitHub
03/25/2024, 7:05 PMwennan.he
03/25/2024, 7:30 PMJohn Leo
03/26/2024, 4:33 AMosqueryd.snapshots.log
. What is wrong about it? Osquery version is 4.4.0.Jay
03/26/2024, 5:58 PMwennan.he
03/27/2024, 12:01 AMLijin
03/27/2024, 10:38 AMFG
03/27/2024, 4:00 PMzwass
In file included from /Users/zwass/dev/osquery/osquery/utils/darwin/system_profiler.mm:10:
In file included from /Users/zwass/dev/osquery/osquery/utils/darwin/system_profiler.h:12:
In file included from /Users/zwass/dev/osquery/build/ns_osquery_utils_status/osquery/utils/status/status.h:12:
In file included from /Users/zwass/dev/osquery/build/ns_osquery_utils_error/osquery/utils/error/error.h:13:
In file included from /Users/zwass/dev/osquery/build/ns_osquery_utils_conversions_to/osquery/utils/conversions/to.h:12:
In file included from /Users/zwass/dev/osquery/libraries/cmake/source/boost/src/libs/core/include/boost/core/demangle.hpp:13:
In file included from /Users/zwass/dev/osquery/libraries/cmake/source/boost/src/libs/config/include/boost/config.hpp:44:
/Users/zwass/dev/osquery/libraries/cmake/source/boost/src/libs/config/include/boost/config/detail/select_stdlib_config.hpp:26:14: fatal error: 'cstddef' file not found
# include <cstddef>
^~~~~~~~~
1 error generated.
GitHub
04/08/2024, 4:24 PM<https://github.com/osquery/osquery/tree/master|master>
by Smjert
<https://github.com/osquery/osquery/commit/399bc1059f372c03b922586ef585907960974216|399bc105>
- Fix xz submodule url: the GitHub mirror was banned due to CVE-2024-3094 (#8304)
osquery/osqueryPriya Jagyasi
04/12/2024, 5:20 AMVinny
04/12/2024, 5:38 AMcd build_folder
mkdir package_data
where I am assuming the build_folder
means just the build
directory explained in the build process? Ok I am already there, so I create the directory package_data
but then when I run:
export DESTDIR=$(pwd)/package_data
cmake --build . --target install
Nothing gets installed in the package_data directory
😢Kyle Pazandak
04/12/2024, 7:53 PMFalcon-V
04/12/2024, 11:39 PM{
“options”:{
“config_plugin”:“filesystem”,
“logger_plugin”:“filesystem”,
“logger_path”:“/var/log/osquery”,
“disable_logging”:“false”,
“log_result_events”:“true”,
“schedule_splay_percent”:“10”,
“audit_persist”:“true”,
“disable_audit”:“false”,
“audit_allow_sockets”:“true”,
“disable_events”:“false”,
“pack_refresh_interval”: “3600”,
“audit_allow_config”: “true”
},
"bpf_socket_events":{
“query”:“SELECT * FROM bpf_socket_events;“,
“interval”:10
},Falcon-V
04/13/2024, 3:17 AMFalcon-V
04/14/2024, 2:57 PM