SIEM – Log Management
We’ve enhanced the installation process for the SIEM module. The Filebeat setup will now use a dedicated user instead of the Kibana root user. This change strengthens the security of the installation process by reducing the risk associated with using elevated privileges.
General – NetEye Setup
We’ve resolved an issue in the update/upgrade process. When verifying file consistency across cluster nodes—particularly for certificate files that should be identical on all nodes—the script now accounts for symlinked files. This improvement makes the update/upgrade process more flexible and compatible with custom configurations.
List of updated packages
To solve the aforementioned issues, the following packages have been updated:
elastic-agent, elastic-agent-autosetup, elastic-agent-neteye-config, filebeat, filebeat-autosetup, filebeat-neteye-config, logstash, logstash-neteye-config, logstash-autosetup, logstash-neteye-config-autosetup, kibana, kibana-autosetup, kibana-neteye-config, elasticsearch, elasticsearch-autosetup, elasticsearch-neteye-config, elasticsearch-xpack-licenseto version8.17.0_neteye3.72.8-1neteye-setup, neteye-setup-configuratorto version1.136.2-1
Emil Fazzi
Software Developer, R&D Team in the "IT System & Service Management Solutions" group at Würth Phoenix.
Author
Latest posts by Emil Fazzi
17. 01. 2025
Automation, Development, Documentation, Log-SIEM
Elasticsearch Magic: Achieving Zero Downtime during User Guide Updates