osquery

badchipmunk · March 23, 2019, 01:51:38 AM

Hi! Not sure where to put this, so the dev branch seemed appropriate. How can I request that osquery be included in the ports library for opnsense? It's available on FreeBSD ports, and it's quite handy to monitor my systems, so I'd love to see it included here so I can query my opnsense host along with the rest of my fleet.

gstuartj · April 17, 2019, 12:52:50 AM

This would be great. OSQuery is only going to get more popular. While I'm not sure if it should be included in core, it would be a very valuable plugin to have.

mimugmail · April 17, 2019, 06:56:29 AM

Via GitHub in tools repo, open an issue for this :)

franco · April 20, 2019, 07:34:57 PM

The dependencies don't look so appealing for lightweight footprint of our build system, but I'll take a closer look. For reference:

https://github.com/opnsense/tools/issues/131

franco · April 21, 2019, 07:38:41 PM

osquery requires 749 MB of packages on the disk and 71 MB in zipped downloads. it is indeed very heavy for the purpose it's trying to fill in. not sure what Michael thinks but it certainly does not qualify our policy "light footprint and no similar alternative available".

Thoughts on this situation?

Cheers,
Franco

osquery

badchipmunk

March 23, 2019, 01:51:38 AM

gstuartj

April 17, 2019, 12:52:50 AM #1

mimugmail

April 17, 2019, 06:56:29 AM #2

franco

April 20, 2019, 07:34:57 PM #3

franco

April 21, 2019, 07:38:41 PM #4