removal(crowdsec): Dropping crowdsec
After some testing and fiddling around, I don't think it's worth the hassle. Not only was ingress-nginx much less stable since integrating the crowdsec bouncer plugin, but also just providing some questionable log parsers etc, mainly focusing on bruteforce attacks for passwords, which is useless when everything goes to SSO anyway. Finally there were some other technical faux pas, like hardcoded passwords on the integrated dashboard (which is also mostly useless), expired GPG keys on the Fedora repository and finally a lack of bouncer modules on current Fedora releases, depsite the docs claiming otherwise. And given the issues date back to march, it doesn't seem to be a something that will be resolved any time soon. I guess my biggest critique is that the whole "fail2ban of the modern area" limits itself to IP addresses only. No additional metadata to block or mitigate attacks or identify attackers. Relying on IP addresses only in 2023 is not on time. The whole being distributed with the lapi server, is nice, but not enough to make this acceptable.
Showing
- apps/base/crowdsec/dashboards/crowdsec_details_v5.json 0 additions, 1585 deletionsapps/base/crowdsec/dashboards/crowdsec_details_v5.json
- apps/base/crowdsec/dashboards/crowdsec_lapi_v5.json 0 additions, 562 deletionsapps/base/crowdsec/dashboards/crowdsec_lapi_v5.json
- apps/base/crowdsec/dashboards/crowdsec_overview_v5.json 0 additions, 1381 deletionsapps/base/crowdsec/dashboards/crowdsec_overview_v5.json
- apps/base/crowdsec/kustomization.yaml 0 additions, 21 deletionsapps/base/crowdsec/kustomization.yaml
- apps/base/crowdsec/namespace.yaml 0 additions, 31 deletionsapps/base/crowdsec/namespace.yaml
- apps/base/crowdsec/networkpolicy.yaml 0 additions, 19 deletionsapps/base/crowdsec/networkpolicy.yaml
- apps/base/crowdsec/release.yaml 0 additions, 106 deletionsapps/base/crowdsec/release.yaml
- apps/base/crowdsec/repository.yaml 0 additions, 8 deletionsapps/base/crowdsec/repository.yaml
- apps/k8s01/crowdsec/certificate.yaml 0 additions, 66 deletionsapps/k8s01/crowdsec/certificate.yaml
- apps/k8s01/crowdsec/ingress.yaml 0 additions, 77 deletionsapps/k8s01/crowdsec/ingress.yaml
- apps/k8s01/crowdsec/kustomization.yaml 0 additions, 9 deletionsapps/k8s01/crowdsec/kustomization.yaml
- apps/k8s01/crowdsec/release-values.yaml 0 additions, 62 deletionsapps/k8s01/crowdsec/release-values.yaml
- clusters/k8s01/nginx-system/release-override.yaml 3 additions, 65 deletionsclusters/k8s01/nginx-system/release-override.yaml
Loading
Please register or sign in to comment