Wednesday, March 18, 2020

Elastic 6.8.7 now available for Security Onion!

The following updates are now available for Security Onion!

  • Elastic 6.8.7 Docker images
  • securityonion-elastic - 20190510-1ubuntu1securityonion87

These updates should resolve the following issues:

Elastic 6.8.7 #1728

securityonion-elastic: adjust bro_notice parsing #1724

securityonion-elastic: check ingest geoip fields #1725

so-import-pcap: support paths with spaces #1714

so-import-pcap: enable file-extraction #1715

securityonion-elastic: change template name in 9002_output_import.conf #1723

securityonion-elastic: logstash custom config should get copied for LOGSTASH_MINIMAL #1719

Thanks to the Elastic team for Elastic 6.8.7!
Thanks to Wes Lambert and Bryant Treacle for testing and QA!

Please see the following page for full update instructions:

Need support?  Please see:

You can find our documentation here:

Also, we're now offering a printed copy of our official documentation with foreword by Richard Bejtlich and proceeds going to Rural Technology Fund:

Security Onion Solutions is the only official authorized training provider for Security Onion.  For more information about our training classes, please see:

We now offer hardware appliances!  For more information, please see:


No comments:

Search This Blog

Featured Post

Celebrating 10 Years of Security Onion Solutions and Announcing Security Onion Pro!

From Doug Burks, Founder and CEO of Security Onion Solutions:  There’s an old saying that it takes ten years to be an overnight success. Tha...

Popular Posts

Blog Archive