Does anyone have any experience with CrowdSec (in comparison to fail2ban)? https://www.crowdsec.net/
This profile might be incomplete.
Open on chaos.social Frederic
Wall 2 posts
Frederic
Does anyone have any experience with CrowdSec (in comparison to fail2ban)? https://www.crowdsec.net/ |
@frederic Auf deren Startseite: "apt install crowdsec-firewall-bouncer-iptables"
Sorry aber ich kann ne Pseudo-Sec-Bude, die immer noch iptables legacy shit macht nicht ernst nehmen. Selbst Debian macht mittlerweile nftables.
@frederic@chaos.social
1) works slightly better, especially if you don't know a good heuristic to catch bots early on (say, checking wordpress pages or xmlrpc endpoints that don't exist, but sometimes they do exist)
2) consumes much more resources compared to fail2ban, kinda noticable on low-end VPSes
3) is more complex and can be trickier to configure for nonstandard scenarios
so, as usual, a tradeoff.