new package: security/pfSense-pkg-crowdsec v0.1 #1311
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Hi!
We (CrowdSec) would like to contribute this plugin, which has been requested by our users for a while. Any feedback and suggestion is welcome.
It provides full integration with a crowdsec engine for thread detection and remediation. The engine can be offloaded to a separate machine to spare CPU cycles, or installed within pfsense. The remediation component synchronizes the block lists with a PF table. We tried to follow your practices with regards to development patterns and conventions. The UI may seem a little off mainly for the javascript tables, we can improve that on a later release.
The package brings some dependencies that are currently not built by pfsense:
Until the package is accepted in the mainstream repository, it can be tested with our provided binaries - basic documentation here: https://docs.crowdsec.net/docs/next/getting_started/install_crowdsec_pfsense
Since we need to read/write YAML to configure crowdsec, we embedded the symfony/yaml packge. If there is a cleaner solution to provide it as dependency or an alternative package, let us know.
First time contributors here, so please be lenient (with @julienloizelet, he wrote the good parts)
Related issue: https://redmine.pfsense.org/issues/14712