Hardware and software requirements
Use the following minimal hardware and software on the host for Kaspersky Threat Feed App for MISP (without platform):
Supported operating systems
The converter can be run on the following operating systems:
Disk space requirements
Every feed from Kaspersky Threat Data Feeds requires from 2 megabytes (MB) to 800 MB of hard disk space.
If all feeds are converted, we recommend to have at least 10 GB of hard disk space available. This disk space is used during the feed conversion process.
Make sure that enough index nodes (inodes) are available on the disk where Kaspersky Threat Data Feeds will be converted. The inode count is important because the inodes limit is close to the file count limit. If all available feeds are enabled, MISP conversion will create about 2.5M to 3M small JSON files representing MISP events. If the inode count is not large enough, the conversion process may be interrupted with an insufficient disk space error. In this case, the error is not caused by insufficient disk space but by an insufficient number of inodes.
The recommended number of inodes is 3M. You can check the available amount with the df -ih command.
If the available inode count is lower than 3M, we recommend to add a new file system with a lower inodes-to-blocks ratio specified in its usage-type. For example, for an ext4 file system the value should be one inode for every 4096 bytes. For more information, see https://wiki.archlinux.org/index.php/Ext4#Bytes-per-inode_ratio.
CPU requirements
Kaspersky Threat Feed App for MISP requires a multi-core CPU with two or more cores.
Page top