mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-07-02 01:27:27 -04:00
c7516ae1f8
In some rare occasions the .kibana index might be corrupted (IOException) resulting in missing translogs and thus preventing .kibana index from getting indexed (happens during a power failure). A quick fix is to delete the contents in “/data/elk/data/elasticsearch/nodes/0/indices/.kibana/*“, extract elkbase.tgz to a temp folder (tar xvfz elkbase.tgz /tmp/) and copy “cp -R /tmp/data/elk/data/elasticsearch/nodes/0/indices/.kibana/* /data/elk/data/elasticsearch/nodes/0/indices/.kibana/“. Make sure to stop service checks (“/etc/crontab”) and stop elk (service elk stop) before doing this.