-
Archives
- March 2023
- February 2023
- October 2022
- February 2022
- January 2022
- December 2021
- September 2021
- August 2021
- July 2021
- March 2021
- January 2020
- May 2018
- May 2017
- April 2017
- March 2016
- February 2016
- December 2015
- September 2015
- March 2015
- January 2015
- October 2014
- June 2014
- March 2014
- February 2014
- December 2013
- November 2013
- August 2013
- July 2013
- June 2013
- May 2013
- February 2013
- October 2012
- July 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- November 2011
- October 2011
- June 2011
- May 2011
- April 2011
- December 2010
- November 2010
-
Meta
Category Archives: Linux
Suricata and fail2ban
In case you want to ban IP addresses based on Suricata fast.log, here is the filter you need: In the jail configuration, I suggest you change the default blocktype from REJECT to DROP. Edit 2023-03-24: you may want to use … Continue reading
Posted in Computer, Linux, Networking, Security, Ubuntu
Leave a comment
Traefik & Grafana: auto-login based on source IP
If you want to automatically (or force a specific) login requests to Grafana coming from a given source IP with Traefik, you can do it with a separate router and a middleware. This requires basic authentication to be enabled on … Continue reading
Posted in Computer, Docker, Linux
Leave a comment
CentOS 8 End of Life: upgrade to CentOS Stream
CentOS 8 End of Life has been effective since January 31 2021, official mirrors do not provide any packages anymore. Here is how to upgrade to latest release of CentOS 8 and switch to Stream. As always, prior to any … Continue reading
Posted in CentOS, Computer, Linux
Leave a comment
Elasticsearch in Docker: threat intelligence with filebeat
Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip
Posted in Computer, Docker, Linux, Networking, Security
Tagged docker, elastic, filebeat, ioc, kibana, monitoring, security, threatintelligence
Leave a comment
Elasticsearch in Docker: quick notes
Goals: single node elasticsearch single node kibana password for all accounts https between all components behind traefik future post: collect network logs (routers) future post: collect application logs (web servers, dns servers, docker) future post: collect application metrics future post: … Continue reading
Posted in Computer, Docker, Linux, Networking
Tagged docker, elastic, kibana, logstash, metrics, observability, search, traefik
Leave a comment
Traefik reverse-proxy with ModSecurity
Traefik itself does not include WAF capabilities. If you want to add this capability, you can opt to replace Traefik with Apache httpd or nginx coupled with ModSecurity, however you loose the autoconfiguration of Traefik. Fortunately, Alexis Couvreur has developed … Continue reading
Backup gitea container
Gitea is great when you want a fast, light and yet user-friendly git repositories. Alternatives would be Gogs, Gitlab or even Github. Gitea documentation tells you to use docker exec to perform a backup. However, this prevents you from using … Continue reading
A Raspberry Pi, a UPS and a couple of ESXi servers walk into a bar
If you have the power of multiple servers connected to a UPS, you probably need to shut them down when the power goes down and before the UPS runs out of juice. Unless your UPS can be connected to the … Continue reading
Posted in Computer, Linux, Networking
Tagged debian, esxi, linux, raspberrypi, ups, vmware
Leave a comment
Running a PKI using Smallstep certificates with Docker
Recently, I had to set up a new PKI. I was going to go with the good old OpenSSL but it’s 2021, there must be a more userfriendly and, more importantly, automated approach. There are many open-source possibilities: EJBCA, cfssl, … Continue reading
Posted in Computer, Linux, Uncategorized
Tagged docker, linux, pki, self-hosted, smallstep
9 Comments
Deprecation of apt-key in Debian-based distributions
I recently installed an Ubuntu 21.04 and when I wanted to install Atom editor, I was given the following warning about apt-key being deprecated: After a bit of Googling around, I stumbled on this post on askubuntu.com explaining why apt-key … Continue reading