Does anyone have any experience with CrowdSec (in comparison...

Freddy vs. JSON 🔪's posts Post Back to profile

Freddy vs. JSON 🔪

Does anyone have any experience with CrowdSec (in comparison to fail2ban)? https://www.crowdsec.net/

Like 29 May 2023 at 20:56 | Open on chaos.social

3 comments

ttk✔️ (DO1TTK)

@frederic Auf deren Startseite: "apt install crowdsec-firewall-bouncer-iptables"

Sorry aber ich kann ne Pseudo-Sec-Bude, die immer noch iptables legacy shit macht nicht ernst nehmen. Selbst Debian macht mittlerweile nftables.

30 May 2023 at 6:38 | Open on ruhr.social

Freddy vs. JSON 🔪

@ttk Es gibt doch unterschiedliche Bouncer. Der Firewall-Bouncer kann iptables, nftables, ipset only und pf:

https://doc.crowdsec.net/docs/bouncers/firewall/

30 May 2023 at 6:43 | Open on chaos.social

DELETED

@frederic@chaos.social
1) works slightly better, especially if you don't know a good heuristic to catch bots early on (say, checking wordpress pages or xmlrpc endpoints that don't exist, but sometimes they do exist)
2) consumes much more resources compared to fail2ban, kinda noticable on low-end VPSes
3) is more complex and can be trickier to configure for nonstandard scenarios

so, as usual, a tradeoff.

30 May 2023 at 20:19 | Open on shitpost.poridge.club

Go Up