2019-04-04 08:26:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								# Changelog
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2020-03-16 15:29:39 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20200316
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Move from Sid to Stable** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Debian Stable has now all the packages and versions we need for T-Pot. As a consequence we can now move to the `stable`  branch.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2020-03-10 15:49:41 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20200310
  
						 
					
						
							
								
									
										
										
										
											2020-03-10 15:39:16 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **Add 2FA to Cockpit** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Just run `2fa.sh`  to enable two factor authentication in Cockpit.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Find fastest mirror with netselect-apt** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Netselect-apt will find the fastest mirror close to you (outgoing ICMP required).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2020-03-09 14:14:46 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20200309
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump Nextgen to 20.06** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  All NextGen images have been rebuilt to their latest master.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  ElasticStack bumped to 7.6.1 (Elasticsearch will need at least 2048MB of RAM now, T-Pot at least 8GB of RAM) and tweak to accomodate changes of 7.x.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Fixed errors in Tanner / Snare which will now handle downloads of malware via SSL and store them correctly (thanks to @afeena ).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Fixed errors in Heralding which will now improve on RDP connections (thanks to @johnnykv , @realsdx ).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Fixed error in honeytrap which will now build in Debian/Buster (thanks to @tillmannw ).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Mailoney is now logging in JSON format (thanks to @monsherko ).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Base T-Pot landing page on Heimdall.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Tweaking of tools and some minor bug fixing
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2020-01-16 20:05:45 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20200116
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump ELK to latest 6.8.6** 
						 
					
						
							
								
									
										
										
										
											2020-01-16 21:10:03 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **Update ISO image to fix upstream bug of missing kernel modules** 
						 
					
						
							
								
									
										
										
										
											2020-01-16 20:05:45 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **Include dashboards for CitrixHoneypot** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Please run `/opt/tpot/update.sh`  for the necessary modifications, omit the reboot and run `/opt/tpot/bin/tped.sh`  to (re-)select the NextGen installation type.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  This update requires the latest Kibana objects as well. Download the latest from https://raw.githubusercontent.com/dtag-dev-sec/tpotce/master/etc/objects/kibana_export.json.zip, unzip and import the objects within Kibana WebUI > Management > Saved Objects > Export / Import". All objects will be overwritten upon import, make sure to run an export first.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2020-01-15 12:14:23 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20200115
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Prepare integration of CitrixHoneypot** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Prepare integration of [CitrixHoneypot ](https://github.com/MalwareTech/CitrixHoneypot ) by MalwareTech
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Integration into ELK is still open
							 
						 
					
						
							
								
									
										
										
										
											2020-01-15 12:41:45 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Please run `/opt/tpot/update.sh`  for the necessary modifications, omit the reboot and run `/opt/tpot/bin/tped.sh`  to (re-)select the NextGen installation type.
							 
						 
					
						
							
								
									
										
										
										
											2020-01-15 12:14:23 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-12-24 11:14:44 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20191224
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Use pigz, optimize logrotate.conf** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Use `pigz`  for faster archiving, especially with regard to high volumes of logs - Thanks to @workandresearchgithub !
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Optimize `logrotate.conf`  to improve archiving speed and get rid of multiple compression, also introduce `pigz` .
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191121
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump ADBHoney to latest master** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Use latest version of ADBHoney, which now fully support Python 3.x - Thanks to @huuck !
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191113, 20191104, 20191103, 20191028
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Switch to Debian 10 on OTC, Ansible Improvements** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  OTC now supporting Debian 10 - Thanks to @shaderecker !
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191028
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix an issue with pip3, yq** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  `yq`  needs rehashing.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191026
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Remove cockpit-pcp** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  `cockpit-pcp`  floods swap for some reason - removing for now.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191022
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump Suricata to 5.0.0** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191021
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump Cowrie to 2.0.0** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-10-16 10:30:27 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20191016
  
						 
					
						
							
								
									
										
										
										
											2019-10-16 15:01:04 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **Tweak installer, pip3, Heralding** 
						 
					
						
							
								
									
										
										
										
											2019-10-16 10:30:27 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Install `cockpit-pcp`  right from the start for machine monitoring in cockpit.
							 
						 
					
						
							
								
									
										
										
										
											2019-10-16 15:01:04 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Move installer and update script to use pip3.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Bump heralding to latest master (1.0.6) - Thanks @johnnykv !
							 
						 
					
						
							
								
									
										
										
										
											2019-10-16 10:30:27 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191015
  
						 
					
						
							
								
									
										
										
										
											2019-10-16 10:32:47 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **Tweaking, Bump glutton, unlock ES script** 
						 
					
						
							
								
									
										
										
										
											2019-10-16 10:30:27 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Add `unlock.sh`  to unlock ES indices in case of lockdown after disk quota has been reached.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Prevent too much terminal logging from p0f and glutton since `daemon.log`  was filled up.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Bump glutton to latest master now supporting payload_hex. Thanks to @glaslos .
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20191002
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Merge** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Support Debian Buster images for AWS #454 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Thank you @piffey 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190924
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump EWSPoster** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Supports Python 3.x
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Thank you @Trixam 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190919
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Merge** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Handle non-interactive shells #454 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Thank you @Oogy 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190907
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Logo tweaking** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Add QR logo
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-08-29 08:17:13 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190828
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Upgrades and rebuilds** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Bump Medpot, Nginx and Adbhoney to latest master
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Bump ELK stack to 6.8.2
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Rebuild Mailoney, Honeytrap, Elasticpot and Ciscoasa
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Add 1080p T-Pot wallpaper for download
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190824
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Add some logo work** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Thanks to @thehadilps 's suggestion adjusted social preview
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Added 4k T-Pot wallpaper for download
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190823
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix for broken Fuse package** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Fuse package in upstream is broken
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Adjust installer as workaround, fixes #442 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190816
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Upgrades and rebuilds** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Adjust Dionaea to avoid nmap detection, fixes #435  (thanks @iukea1 )
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Bump Tanner, Cyberchef, Spiderfoot and ES Head to latest master
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190815
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Bump ELK stack to 6.7.2** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Transition to 7.x must iterate slowly through previous versions to prevent changes breaking T-Pots
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190814
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Logstash Translation Maps improvement** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Download translation maps rather than running a git pull
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Translation maps will now be bzip2 compressed to reduce traffic to a minimum
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Fixes #432 
							 
						 
					
						
							
								
									
										
										
										
											2019-08-02 17:35:56 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190802
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Add support for Buster as base image** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Install ISO is now based on Debian Buster
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Installation upon Debian Buster is now supported
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-07-01 06:28:45 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190701
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Reworked Ansible T-Pot Deployment** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Transitioned from bash script to all Ansible
							 
						 
					
						
							
								
									
										
										
										
											2019-07-01 08:21:05 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Reusable Ansible Playbook for OpenStack clouds
							 
						 
					
						
							
								
									
										
										
										
											2019-07-01 06:28:45 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								  -  Example Showcase with our Open Telekom Cloud
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Adaptable for other cloud providers
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-06-26 09:17:49 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190626
  
						 
					
						
							
								
									
										
										
										
											2019-05-16 09:19:03 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								-  **HPFEEDS Opt-In commandline option** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Pass a hpfeeds config file as a commandline argument
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  hpfeeds config is saved in `/data/ews/conf/hpfeeds.cfg` 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Update script restores hpfeeds config
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-06-04 14:21:35 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190604
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Finalize Fatt support** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Build visualizations, searches, dashboards
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Rebuild index patterns
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Some finishing touches
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-06-03 20:25:29 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190601
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Start supporting Fatt, remove Glastopf** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Build Dockerfile, Adjust logstash, installer, update and such.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Glastopf is no longer supported within T-Pot
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190528+20190531
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Increase total number of fields** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Adjust total number of fileds for logstash templae from 1000 to 2000.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190526
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix build for Cowrie** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Upstream changes required a new package `py-bcrypt` .
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190525
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix build for RDPY** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Building was prevented due to cache error which occurs lately on Alpine if `apk`  is using `--no-ache' as options.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190520
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Adjust permissions for /data folder** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Now it is possible to download files from `/data`  using SCP, WINSCP or CyberDuck.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-05-13 20:46:10 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190513
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Added Ansible T-Pot Deployment on Open Telekom Cloud** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Reusable Ansible Playbooks for all cloud providers
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Example Showcase with our Open Telekom Cloud
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-05-11 11:29:00 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190511
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Add hptest script** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Quickly test if the honeypots are working with `hptest.sh <[ip,host]>`  based on nmap.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-05-08 11:16:48 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190508
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Add tsec / install user to tpot group** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  For users being able to easily download logs from the /data folder the installer now adds the `tpot`  or the logged in user (`who am i`) via `usermod -a -G tpot <user>`  to the tpot group. Also /data permissions will now be enforced to `770` , which is necessary for directory listings.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-05-02 16:59:36 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190502
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix KVPs** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Some KVPs for Cowrie changed and the tagcloud was not showing any values in the Cowrie dashboard.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  New installations are not affected, however existing installations need to import the objects from /opt/tpot/etc/objects/kibana-objects.json.zip.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Makeiso** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Move to Xorriso for building the ISO image.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  This allows to support most of the Debian based distros, i.e. Debian, MxLinux and Ubuntu.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								## 20190428
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Rebuild ISO** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  The install ISO needed a rebuilt after some changes in the Debian mirrors.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Disable Netselect** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  After some reports in the issues that some Debian mirrors were not fully synced and thus some packages were unavailable the netselect-apt feature was disabled.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-06 10:17:53 +00:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								## 20190406
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix for SSH** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  In some situations the SSH Port was not written to a new line (thanks to @dpisano  for reporting).
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix race condition for apt-fast** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Curl and wget need to be installed before apt-fast installation.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-04 08:26:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								## 20190404
  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Fix #332 ** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  If T-Pot, opposed to the requirements, does not have full internet access netselect-apt fails to determine the fastest mirror as it needs ICMP and UDP outgoing. Should netselect-apt fail the default mirrors will be used.
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								-  **Improve install speed with apt-fast** 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								  -  Migrating from a stable base install to Debian (Sid) requires downloading lots of packages. Depending on your geo location the download speed was already improved by introducing netselect-apt to determine the fastest mirror. With apt-fast the downloads will be even faster by downloading packages not only in parallel but also with multiple connections per package.