Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- 5G/IoT
- Prisma SD-WAN
Network Security
- Prisma Access
- Prisma Access Insights
- Prisma SaaS
- Prisma Cloud
- CN-Series
- VM-Series:
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
Security Operations
- Resources
- COVID-19 Response Center
- LIVEcommunity
- ›
- About andrew.stanton
About andrew.stanton
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Wednesday
20Posts
0Likes
0Solutions
Feb 24, 2021Last Visited
User
Activity
User
Profile
Latest posts by andrew.stanton
| Subject | Views | Posted |
|---|---|---|
| 9525 | 11-15-2018 09:14 PM | |
| 3624 | 04-02-2018 01:05 PM | |
| 3513 | 05-31-2017 10:52 AM | |
| 2051 | 05-12-2017 06:32 AM | |
| 4299 | 05-03-2017 02:39 PM |
Posts I Liked
User Badges
Public Statistics
| Date Registered | 02-18-2014 09:15 AM |
| Date Last Visited | Wednesday |
| Total Messages Posted | 27 |
02-07-2020
09:07 AM
The command is not working i have installed minemeld via docker please help
... View more
10-16-2019
07:10 AM
I'm looking to change the threshold in traced.yml ("The threshold can be configured in the traced.yml config file"). What are the arguments to achieve this change?
... View more
11-15-2018
09:14 PM
1 Kudo
Everything on here no longer works. CFs fail due to not trusting repo, and User Data is too big to import on a fresh launch EC2 instance. Maybe you can simply write a User Data script based on the 3 commands needed to build MineMeld which you have documented on the manual method of installing on Ubuntu 14.04.
... View more
07-09-2018
02:18 PM
Does the DAG pusher work with the autofocus hosted minemeld/are there any differences in the way the dagpusher pushes---I would think the Firewall would have to initiate the connection to autofocus- or are people whitelisting autofocus.paloaltonetworks.com coming into their environment?
... View more
05-30-2018
06:16 AM
Hi @kbrookover,
they will just keep working as they are.
Luigi
... View more
02-05-2018
04:37 PM
I echo the suggestions below. If there was also a robust API, this might be able to be scripted external to MM, but even just a syslog would be useful to create at least the notification.
... View more
12-25-2017
11:36 PM
Hi @kreeves,
thanks ! I will work on integrating your patch in MIneMeld source code.
... View more
05-15-2017
02:03 AM
Hi @andrew.stanton,
thanks, this is a bug and will be fixed in the next release. Details here: https://github.com/PaloAltoNetworks/minemeld-core/issues/213
A workaround is forcing a flush and an update on the existing miner you just added to the aggregator:
$ /opt/minemeld/engine/current/bin/mm-console signal flush aws_amazon_miner
$ /opt/minemeld/engine/current/bin/mm-console hup aws_amazon_miner
... View more
03-02-2017
07:35 AM
Hi @andrew.stanton,
if you have a new version of an existing extension you don't need to deactivate the former version, you can just upload and activate the new one. The old version should be automatically deactivated.
luigi
... View more
01-25-2017
05:49 AM
Hi @andrew.stanton,
would you mind opening an issue on github in the minemed-core repo ?
Here: https://github.com/PaloAltoNetworks/minemeld-core/issues
... View more
01-24-2017
01:17 PM
Hi @andrew.stanton,
we have a beta for it and we should release it next week(-ish).
You can find two sample extensions here:
https://github.com/PaloAltoNetworks/minemeld-cef (output node for Arcsight CEF)
https://github.com/PaloAltoNetworks/youtube-miner (Miner for Youtube API)
luigi
... View more
01-24-2017
09:32 AM
Also, I did find a tor prototype. Hard to search for it because 'tor' is at the end of aggregator and such...
tor.exit_addresses PROTOTYPE
I find this one is different than the Emerging Threats source. It has less indicators.
... View more
12-18-2016
11:49 PM
HI @andrew.stanton,
that's what is being used by MineMeld. That file is upgraded with MineMeld upgrades.
The idea then would be:
- take that file and place it in a "safe" directory (a directory persistent across upgrade), like /opt/minemeld/local/certs
- append your cert to that file
- create the file /etc/default/minemeld with contenets "export REQUESTS_CA_BUNDLE=/opt/minemeld/local/certs/cacert.pem"
- sudo service minemeld restart
We are working on a utility to do this.
... View more
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
