Update elasticsearch to 7.16.1 #58

caffeinatedpixel · 2021-12-13T20:20:45Z

Closes #57
Updated the docker image for elasticsearch to 7.16.1. This also moves the build from pulling from DockerHub to pulling from elastic's docker registry.
Elasticsearch 7.16.1 takes care of the log4j vulnerability.

Tested on existing system with a Windows host feeding Kibana on BeaKer 0.0.8 and upgraded with no issues. Windows host continues to feed Kibana after upgrade.
There shouldn't be any caveats in upgrading clusters since BeaKer is single node.

Zalgo2462 · 2021-12-13T20:27:49Z

Do we want to take this opportunity to upgrade the kibana image as well? Apparently the images on Dockerhub are no longer supported. The new kibana docker image is located at docker.elastic.co/kibana/kibana:7.16.1

caffeinatedpixel · 2021-12-13T20:31:42Z

I looked into it earlier today and saw quite a few breaking changes for Kibana. I'm not familiar with what we're currently using within Kibana and whether or not things would go south.

Zalgo2462 · 2021-12-13T20:33:27Z

Makes sense, let's leave Kibana for another day then.

Zalgo2462

Confirmed that when upgrading an existing BeaKer instance, data continues to flow from the Windows agents.

Update elasticsearch to 7.16.1

856c23d

Zalgo2462 self-requested a review December 13, 2021 20:48

Zalgo2462 approved these changes Dec 13, 2021

View reviewed changes

Zalgo2462 merged commit af0cd0d into master Dec 13, 2021

Zalgo2462 deleted the 57-log4j branch December 13, 2021 20:57

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update elasticsearch to 7.16.1 #58

Update elasticsearch to 7.16.1 #58

Update elasticsearch to 7.16.1 #58

Update elasticsearch to 7.16.1 #58

Conversation

Choose a reason for hiding this comment