Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

EDR: S3 Output Stops after bundle_send_timeout hit

EDR: S3 Output Stops after bundle_send_timeout hit

Environment

  • EDR Event Forwarder: 3.8.0 and 3.8.1

Symptoms

The output to s3 stops after the configured bundle_send_timeout is hit.

Cause

This is a known defect.

Resolution

  • This issue will be fixed on 3.8.2 EF release.
  • The workaround is to downgrade to 3.7.5 version:
            Here are the commands:
#systemctl stop cb-event-forwarder
#yum clean all
#yum downgrade --disablerepo=* --enablerepo=CbOpenSource* cb-event-forwarder-3.7.5-1.el7

Labels (1)
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎05-18-2022
Views:
48
Contributors