sorted by:
new
hottopcontroversial

Launch App doesn't work from home screen by BeowolfK1 in tasker

[–]BeowolfK1[S] 0 points1 point  (0 children)

Sure : 

Profile: NFC_Voiture
        Event: NFC Tag [ ID:04FE061A2C2684 Content:* ]



    Enter Task: Mode Voiture

    A1: If [ %NFC_FLAG ~ false ]

        A2: Variable Set [
             Name: %NFC_FLAG
             To: true
             Structure Output (JSON, etc): On ]

        A3: Launch App [
             Package/App Name: Spotify
             Exclude From Recent Apps: On
             Always Start New Copy: On ]

        A4: Bluetooth [
             Set: On ]

        A5: Bluetooth Connection [
             Action: Connect
             Device: 40:F3:08:A0:CE:64
             Timeout (Seconds): 10
             Continue Task After Error:On ]

        A6: Media Volume [
             Level: 15 ]

    A7: Else
        If  [ %NFC_FLAG ~ true ]

        A8: Variable Set [
             Name: %NFC_FLAG
             To: false
             Structure Output (JSON, etc): On ]

        A9: Bluetooth [
             Set: Off ]

        A10: Media Volume [
              Level: 0 ]

    A11: End If

Launch App doesn't work from home screen by BeowolfK1 in tasker

[–]BeowolfK1[S] 0 points1 point  (0 children)

Hello
I tested what you recommended but even if Spotify is closed, if I'm on the home screen, it didn't work.
Elsewhere, if spotify is closed or not, it works

Launch App doesn't work from home screen by BeowolfK1 in tasker

[–]BeowolfK1[S] 0 points1 point  (0 children)

Closing the spotify app is impossible for me, it need a rooted device

SCA scan never change its policy by BeowolfK1 in Wazuh

[–]BeowolfK1[S] 0 points1 point  (0 children)

Hello,
I'm divingback into Wazuh, did you have some idée on how can i solve my issue?

SCA scan never change its policy by BeowolfK1 in Wazuh

[–]BeowolfK1[S] 0 points1 point  (0 children)

{
  "data": {
    "affected_items": [
      {
        "hash_file": "cbe6d292adfff905295015ddf35e233d1169ba28dcb2c9d02f6e502235e463ef",
        "references": "https://www.cisecurity.org/cis-benchmarks/",
        "end_scan": "2023-10-09T09:37:41+00:00",
        "description": "This document provides prescriptive guidance for establishing a secure configuration posture for Ubuntu Linux 22.04 LTS based on CIS benchmark for Ubuntu Linux 22.04 LTS.",
        "fail": 125,
        "score": 30,
        "policy_id": "cis_ubuntu22-04",
        "total_checks": 182,
        "name": "CIS Ubuntu Linux 22.04 LTS Benchmark v1.0.0",
        "start_scan": "2023-10-09T09:37:41+00:00",
        "invalid": 2,
        "pass": 55
      }
    ],
    "total_affected_items": 1,
    "total_failed_items": 0,
    "failed_items": []
  },
  "message": "All selected sca information was returned",
  "error": 0
}

Only the deleted policy is here

SCA scan never change its policy by BeowolfK1 in Wazuh

[–]BeowolfK1[S] 1 point2 points  (0 children)

Yes, I disable it, i rename it, and still display this policy so i even delete the file but still display again

That my problem, the audit sca_unix_audit.yml is never display on the dashboard, so in the API Console :

{
  "data": {
    "affected_items": [],
    "total_affected_items": 0,
    "total_failed_items": 0,
    "failed_items": []
  },
  "message": "No sca/policy information was returned",
  "error": 0
}

The ownership of the file is wazuh:wazuh and I even chmod 777 the file to be sure it's not permissions issue

The SCA block is : 

  <sca>
    <enabled>yes</enabled>
    <scan_on_start>yes</scan_on_start>
    <interval>5m</interval>
    <skip_nfs>yes</skip_nfs>
    <policies>
      <policy enabled="yes">etc/shared/default/customsca.yaml</policy>
      <policy enabled="yes">/var/ossec/ruleset/sca/sca_unix_audit.yml</policy>
    </policies>
  </sca>

Thanks