Post AJleIeolFPI36zRlom by hbauer@social.caserio.de
(DIR) More posts by hbauer@social.caserio.de
(DIR) Post #AJleAQPcvG9U7LlUps by seb@ioc.exchange
2022-05-24T05:34:05Z
0 likes, 0 repeats
Anyone on the #infosec fedi or any #mastoadmin running CrowdSec? https://github.com/crowdsecurity/crowdsec
(DIR) Post #AJleIeolFPI36zRlom by hbauer@social.caserio.de
2022-05-24T05:35:38Z
0 likes, 0 repeats
@seb yes
(DIR) Post #AJleRivxJUyYU38S3c by seb@ioc.exchange
2022-05-24T05:37:18Z
0 likes, 0 repeats
@hbauer Cool! Did you experience any false positives that you had to deal with so far? Any other maintenance activities spawned by it? Worth using from your perspective?
(DIR) Post #AJleunBAblrY3472x6 by hbauer@social.caserio.de
2022-05-24T05:42:32Z
0 likes, 0 repeats
@seb regarding fals e/positiv not that I am aware of. I am running it with nginx logs as input and I am using the bounce as in this doc https://doc.crowdsec.net/blog/crowdsec_firewall_freebsd out of the box. I would like to do more but didnt have the time for. but no additional admin work necessary
(DIR) Post #AJlezsrwseFV8xY9rc by seb@ioc.exchange
2022-05-24T05:43:28Z
0 likes, 0 repeats
@hbauer Awesome, thanks a lot!
(DIR) Post #AJlkVgDbwxtkwhfBB2 by fouine@mastodon.underworld.fr
2022-05-24T06:45:12Z
0 likes, 0 repeats
@seb here! #Mastodon behind #Nginx with #crowdsec checking nginx logs. No tuning, no problem.
(DIR) Post #AJloNzlnm2yN5FFMTA by ticoombs@fosstodon.org
2022-05-24T07:28:39Z
0 likes, 0 repeats
@seb no but I want to now!
(DIR) Post #AJofKxx1hNG9RYgm2K by hbauer@social.caserio.de
2022-05-25T16:31:22Z
0 likes, 0 repeats
@seb are you going to give it a try? Would love to hear from your experience
(DIR) Post #AJpUoX4zGZg6S7Gh9s by seb@ioc.exchange
2022-05-26T02:08:12Z
0 likes, 0 repeats
@hbauer I’m still looking at options. It is definitely still in the race.
(DIR) Post #AJpV4Iaeu8Wq9GbHfM by seb@ioc.exchange
2022-05-26T02:11:03Z
0 likes, 0 repeats
@fouine That’s awesome. Are you able to see blocking actions in the logs also?