From 89814e2113f487ab522cd93bdd1a9d08b1d8d9ad Mon Sep 17 00:00:00 2001
From: ReachableCEO <charles@turnsys.com>
Date: Thu, 26 Jun 2025 16:35:23 -0500
Subject: [PATCH] now for the real deal

---
 Modules/Security/secharden-wazuh copy.sh | 19 -------------------
 Modules/Security/secharden-wazuh.sh      | 13 +++++++++----
 2 files changed, 9 insertions(+), 23 deletions(-)
 delete mode 100644 Modules/Security/secharden-wazuh copy.sh

diff --git a/Modules/Security/secharden-wazuh copy.sh b/Modules/Security/secharden-wazuh copy.sh
deleted file mode 100644
index 4bac839..0000000
--- a/Modules/Security/secharden-wazuh copy.sh	
+++ /dev/null
@@ -1,19 +0,0 @@
-#!/bin/bash
-
-# We don't want to run this on the wazuh server, otherwise bad things happen...
-
-export TSYS_NSM_CHECK
-TSYS_NSM_CHECK="$(hostname |grep -c tsys-nsm ||true)"
-
-if [ "$TSYS_NSM_CHECK" -eq 0 ]; then
-
-curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | gpg --no-default-keyring --keyring gnupg-ring:/usr/share/keyrings/wazuh.gpg --import && chmod 644 /usr/share/keyrings/wazuh.gpg
-echo "deb [signed-by=/usr/share/keyrings/wazuh.gpg] https://packages.wazuh.com/4.x/apt/ stable main" > /etc/apt/sources.list.d/wazuh.list
-apt-get update
-WAZUH_MANAGER="tsys-nsm.knel.net" apt-get -y install wazuh-agent
-systemctl daemon-reload
-systemctl enable wazuh-agent
-systemctl start wazuh-agent
-echo "wazuh-agent hold" | dpkg --set-selections
-
-fi
\ No newline at end of file
diff --git a/Modules/Security/secharden-wazuh.sh b/Modules/Security/secharden-wazuh.sh
index 631d557..4bac839 100644
--- a/Modules/Security/secharden-wazuh.sh
+++ b/Modules/Security/secharden-wazuh.sh
@@ -6,9 +6,14 @@ export TSYS_NSM_CHECK
 TSYS_NSM_CHECK="$(hostname |grep -c tsys-nsm ||true)"
 
 if [ "$TSYS_NSM_CHECK" -eq 0 ]; then
-echo "stub... installing agent..."
-fi
 
-if [ "$TSYS_NSM_CHECK" -ne 0 ]; then
-echo "stub... NOT installing agent... NO BAD THINGS..."
+curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | gpg --no-default-keyring --keyring gnupg-ring:/usr/share/keyrings/wazuh.gpg --import && chmod 644 /usr/share/keyrings/wazuh.gpg
+echo "deb [signed-by=/usr/share/keyrings/wazuh.gpg] https://packages.wazuh.com/4.x/apt/ stable main" > /etc/apt/sources.list.d/wazuh.list
+apt-get update
+WAZUH_MANAGER="tsys-nsm.knel.net" apt-get -y install wazuh-agent
+systemctl daemon-reload
+systemctl enable wazuh-agent
+systemctl start wazuh-agent
+echo "wazuh-agent hold" | dpkg --set-selections
+
 fi
\ No newline at end of file