Wednesday, March 18, 2020

Elastic 6.8.7 now available for Security Onion!

The following updates are now available for Security Onion!

  • Elastic 6.8.7 Docker images
  • securityonion-elastic - 20190510-1ubuntu1securityonion87

These updates should resolve the following issues:

Elastic 6.8.7 #1728

securityonion-elastic: adjust bro_notice parsing #1724

securityonion-elastic: check ingest geoip fields #1725

so-import-pcap: support paths with spaces #1714

so-import-pcap: enable file-extraction #1715

securityonion-elastic: change template name in 9002_output_import.conf #1723

securityonion-elastic: logstash custom config should get copied for LOGSTASH_MINIMAL #1719

Thanks to the Elastic team for Elastic 6.8.7!
Thanks to Wes Lambert and Bryant Treacle for testing and QA!

Please see the following page for full update instructions:

Need support?  Please see:

You can find our documentation here:

Also, we're now offering a printed copy of our official documentation with foreword by Richard Bejtlich and proceeds going to Rural Technology Fund:

Security Onion Solutions is the only official authorized training provider for Security Onion.  For more information about our training classes, please see:

We now offer hardware appliances!  For more information, please see:


No comments:

Search This Blog

Featured Post

Top 5 Reasons to Sign Up for our 4-day Security Onion Fundamentals for Analysts & Admins Class in June 2024

Security Onion Solutions has been teaching Security Onion classes since 2014. Since that time, we've taught students around the globe to...

Popular Posts

Blog Archive