3 minute read ·  by Rob Sears

Bonsai Unaffected by Recent Ransomware Attack

This past week, a widely-reported ransomware attack was carried out against tens of thousands of MongoDB databases, and the attackers also targeted several hundred Elasticsearch instances for good measure. Those affected were given a distressing ultimatum: pay Bitcoin to the attackers, or have their data deleted. To add further insult, many who paid the ransom did not even receive their data in return.
read more
13 minute read ·  by Rob Sears

Logstash and Bonsai and bots, oh my!

A quick tutorial on using Logstash with Bonsai Elasticsearch to detect automated login attempts on a random server. Sometimes we’re asked if we support Logstash. The relationships between Elasticsearch, Logstash and Kibana (often referred to as the ELK stack) can sometimes foster a confusing mental model, and a simple "yes" from our support staff probably isn’t enough to help users get up and running quickly. In this post, we’d like to unveil some of the mystery behind why the ELK stack is so popular.
read more
14 minute read ·  by Rob Sears

The ideal Elasticsearch index

A key reason for the popularity of Elasticsearch is the ease and simplicity of setting up a cluster. It's trivial to run the binary and create an index, and the learning curve required to get started with Elasticsearch is very approachable.
read more
4 minute read ·  by Rob Sears

Efficient sorting of geo distances in Elasticsearch

Elasticsearch is much more than just a search engine: it's also a powerful analytics tool. One of the awesome things that Elasticsearch provides out of the box is the ability to calculate the distance between geographic points, and order the results by proximity. A common use case for this is an application where a user wants to see search results that are near a given point.
read more
4 minute read ·  by Rob Sears

Elasticsearch and the IllegalArgumentException (docID must be >= 0)

We sometimes get support tickets from users asking about this error message. They report that some queries, like hotdog, work just fine while others, like hamburger, return an error like IllegalArgumentException[docID must be >= 0 and < maxDoc=... (got docID=2147483647)]. They're confused because it seems to happen randomly and without an underlying cause. They ask: if the index is broken, why do some queries work? If the index is operating normally, why do some queries fail?
read more
1 minute read ·  by Rob Sears

Elasticsearch 1.3.5 and 1.4.0 Rollout Schedule

Starting Wednesday, November 12, 2014, existing clusters will be automatically upgraded to version 1.3.5. In addition, new clusters will be provisioned with version 1.4. Customers looking to upgrade their existing clusters to version 1.4 will be able to upgrade starting the following week (November 17th).
read more