Fail2Ban VS Sonarr

something like https://github.com/renanqts/xdpdropper or cilium's host firewall or https://github.com/boylegu/TyrShield exist or https://github.com/ebpf-security/xdp-firewall today and implement ebpf filter based firewalling.

Of these there is a sample integration for XDPDropper to fail2ban that never got merged https://github.com/fail2ban/fail2ban/pull/3555/files -- I don't think anyone else has really worked on that junction of functionality yet.

There's also wazuh which seems to package ebpf tooling up with a ton of detection and management components, but its not a simple to deploy as fail2ban.

Fail2Ban: Stop brute-force attacks

Wasn't that the argument against https, namely, that it was too costly to run [1]? I also run fail2ban [2] in my servers and I rarely even notice it's there.

I'm not saying you should sit down with the iptables manual and start going through the logs, but I can see the idea taking off if all it takes is (say) one apt-get and two config lines.

[1] https://stackoverflow.com/questions/1035283/will-it-ever-be-...

[2] https://github.com/fail2ban/fail2ban

Not a whole lot of a source to share, sorry.

Whenever registering/subscribing to some provider, I always use a new,unique email address. If/when that provider gets their user database leaked, after some time, spam starts rushing in. At that point, I change my email address in provider's records, and old one is moved to "spamtrap" alias on my server. Over the years, quite a few has accumulated - linkedin, yahoo, you name it...

Fail2ban [0] parses mail server logs, and I have a rule there, where source IP address of anything incoming to spamtrap, is looked up in whois and logged. Then, manual awk/grep/sort contraption is run periodically.

DO's AS14061 used to be consistently in top-3 spam sources, occasionally taking #1 spot.

[0] http://www.fail2ban.org/

IP Ban: Fail2ban

First you need to install Fail2ban. Before installation please see official installation guide on GitHub. Maybe something has been changed after this article published.

Throughout this I'll be referring to these pages: https://nixos.wiki/wiki/Fail2ban https://github.com/dani-garcia/vaultwarden/wiki/Fail2Ban-Setup https://github.com/fail2ban/fail2ban/blob/master/config/action.d/cloudflare.conf

Impatient of what exactly? fail2ban is battle tested for well over a decade. It is also an active project with regular updates: https://github.com/fail2ban/fail2ban/commits/master/

now some things you need to think about: - cloud init - this will need to be secure so lock it down hard anything not needed an alternative OS to look at if you have the ability's is https://www.alpinelinux.org/ also as these devices are not that powerfull every extra agent / abstaction layer you add impacts performance need to look at low over head security https://www.crowdsec.net/ and https://github.com/fail2ban/fail2ban (if you call fail2ban security) - using certificates to authenticate ssh login

Sonarr

All non-GUI .NET applications, unless they use niche things like windows registery or management API, are by definition platform agnostic and run wherever .NET runs (macOS, Linux, FreeBSD(with caveats), Android, iOS, Windows). Most business today which have moved off old version run sever workloads on Linux hosts within K8S or otherwise.

Popular applications that run on Linux are

Jellyfin: https://github.com/jellyfin/jellyfin

Sonarr (and other High Seas apps): https://github.com/Sonarr/Sonarr

Ryujinx: https://github.com/Ryujinx/Ryujinx (the kind of project that can easily match writing a browser in complexity)

Bitwarden (server): https://github.com/bitwarden

Stride3D: https://github.com/stride3d/stride

Godot (offers C# as script language, using regular .NET)

From the top of my head, I'm sure there are many others less popular. It is sad that this conversation needs to be had 8 years after the first version of .NET (Core as it was named at the time).

https://sonarr.tv/

People seem to assume this would be a hard to handle thing, but you can easily applicationize your local web services. And your local web service daemon can expose things like a system tray, to afford some classic manageability.

(https://github.com/Sonarr/Sonarr/pull/5200)

TV Shows: Sonarr

I use Nginx for Sonarr/Radarr would I see any general performance benefit when loading their webpages in general? If so, what level of compression would be ideal for this case?

In the /r/selfhosted community Sonarr and Radarr are staples, but their code isn't particularly great and there are lots of bugs people just deal with. Radarr forked Sonarr, their interface is similar but they suffer from disjoint bugs.