General Topics

Resolved! Single IP List

Just getting started with Minemeld - I noticed that even if a single IP feed is provided (e.g compromised IP list), the inboundfeedmc list still shows as an IP range, e.g 

It is possible to get jts a list of single IP addresse

Resolved! Syslog Miner Prototype Age-out Policy Prevents Engine from Starting

We've been working on getting the syslog miner working to block IPs from the threat logs. However, we want them to stay on the block list for longer than the default 1 hour. From reading through the prototype customization documentation, I think I sh

Resolved! Debug TAC commmand

Hi I have a pair of lab boxes and looking to test the debug TAC -login and TAC-response commmands. My understanding ia usually TAC provided a password to unlock the data is it possible to get a test password for my company to use? We do not require T...

Resolved! Credentials for Minemeld booted from iso ?

Credentials ubuntu/rsplizardspock doesnt work  for minemeld-cloud-init-0.9.5.iso booted on trusty-server-cloudimg-amd64.ova ?

Resolved! Difference between Aggregate and Classified DoS Protection

Hi Folks,

I tried a lot to get my head around Aggregate and Classified DoS Protection.  For some reason, i haven't been able to understand the difference.  Tried looking into the knowledge base, but nothing helped me.  Could someone please explain in

Resolved! External email attachments

Hi everyone,

We allow our users to check personal email externally(gmail/yahoo/etc). I'd like to prevent them from downloading attachments from these external emails if possible. Can this be done and how?

Reason being, downloading attachments directly

Resolved! Proper procedure for updating an extension

I tried this and it seemed to work, just want to be sure it is the right procedure.

1. Disable/delete existing extension wheel

2. Upload/activate updated extension wheel

Is there any negative impact on the nodes using the prototypes and classes o