improve crowdsec example and disable modsec logging when not necessary
This commit is contained in:
parent
843644f806
commit
813607fbc3
|
@ -50,7 +50,6 @@ SecResponseBodyLimitAction ProcessPartial
|
|||
|
||||
# log usefull stuff
|
||||
SecAuditEngine RelevantOnly
|
||||
SecAuditLogRelevantStatus "^(?:5|4(?!04))"
|
||||
SecAuditLogType Serial
|
||||
SecAuditLog /var/log/nginx/modsec_audit.log
|
||||
|
||||
|
|
|
@ -1,3 +1,23 @@
|
|||
#!/bin/sh
|
||||
|
||||
# first, you need to run the crowdsec service
|
||||
echo "running crowdsec service ..."
|
||||
docker-compose up -d mycrowdsec
|
||||
|
||||
# wait a little until it's up
|
||||
sleep 10
|
||||
|
||||
# get the bouncer key
|
||||
docker-compose exec mycrowdsec cscli bouncers add MyBouncer
|
||||
|
||||
# enter the key into the CROWDSEC_KEY environment variable
|
||||
read -p -s "edit CROWDSEC_KEY env var in docker-compose.yml file and press enter"
|
||||
|
||||
# start all services
|
||||
docker-compose up -d
|
||||
|
||||
# wait a little until it's up
|
||||
sleep 10
|
||||
|
||||
# restart crowdsec so it reads the log files
|
||||
docker-compose restart mycrowdsec
|
||||
|
|
Loading…
Reference in New Issue