Monthly Archives: January 2022

Elasticsearch in Docker: threat intelligence with filebeat

Posted on January 23, 2022 by blogger

Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip

Posted in Computer, Docker, Linux, Networking, Security | Tagged , , , , , , , | Leave a comment

Elasticsearch in Docker: quick notes

Posted on January 23, 2022 by blogger

Goals: single node elasticsearch single node kibana password for all accounts https between all components behind traefik future post: collect network logs (routers) future post: collect application logs (web servers, dns servers, docker) future post: collect application metrics future post: … Continue reading

Posted in Computer, Docker, Linux, Networking | Tagged , , , , , , , | Leave a comment

Traefik reverse-proxy with ModSecurity

Posted on January 22, 2022 by blogger

Traefik itself does not include WAF capabilities. If you want to add this capability, you can opt to replace Traefik with Apache httpd or nginx coupled with ModSecurity, however you loose the autoconfiguration of Traefik. Fortunately, Alexis Couvreur has developed … Continue reading

Posted in Computer, Docker, Linux | Tagged , , , , , , , , | Leave a comment

Backup gitea container

Posted on January 15, 2022 by blogger

Gitea is great when you want a fast, light and yet user-friendly git repositories. Alternatives would be Gogs, Gitlab or even Github. Gitea documentation tells you to use docker exec to perform a backup. However, this prevents you from using … Continue reading

Posted in Computer, Linux | Tagged , , , , , | Leave a comment

Applying Audit Policies

Posted on January 11, 2022 by blogger

If like me, you are trying to enable Audit Policies on Windows computers in a domain using Local Policies > Audit Policy, and it does not work, then you came to the right place. The reason is: that is the … Continue reading

Posted in Computer, Microsoft | Tagged , , , , | Leave a comment