CyberMind-FR
cec4893db9
Evolution #1 - IP Blocklist (secubox-app-ipblocklist, luci-app-ipblocklist): - Pre-emptive blocking layer with ipset (~100k IPs) - Default sources: Data-Shield, Firehol Level 1 - Supports nftables (fw4) and iptables backends - LuCI KISS dashboard with sources/whitelist management Evolution #2 - AbuseIPDB Reporter (luci-app-crowdsec-dashboard v0.8.0): - New "AbuseIPDB" tab in CrowdSec Dashboard - crowdsec-reporter.sh CLI for reporting blocked IPs - RPCD handler luci.crowdsec-abuseipdb with 9 methods - Cron job for automatic reporting every 15 minutes - IP reputation checker in dashboard Evolution #3 - Log Denoising (luci-app-system-hub v0.5.2): - Three modes: RAW, SMART (noise ratio), SIGNAL_ONLY (filter known IPs) - Integrates with IP Blocklist ipset + CrowdSec decisions - RPCD methods: get_denoised_logs, get_denoise_stats - Denoise mode selector panel with noise ratio indicator Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
82 lines
1.8 KiB
JSON
82 lines
1.8 KiB
JSON
{
|
|
"luci-app-crowdsec-dashboard": {
|
|
"description": "Grant access to LuCI CrowdSec Dashboard",
|
|
"read": {
|
|
"ubus": {
|
|
"luci.crowdsec-abuseipdb": [
|
|
"status",
|
|
"history",
|
|
"check_ip",
|
|
"get_config",
|
|
"logs"
|
|
],
|
|
"luci.crowdsec-dashboard": [
|
|
"get_overview",
|
|
"decisions",
|
|
"alerts",
|
|
"metrics",
|
|
"bouncers",
|
|
"machines",
|
|
"hub",
|
|
"status",
|
|
"stats",
|
|
"secubox_logs",
|
|
"waf_status",
|
|
"metrics_config",
|
|
"collections",
|
|
"firewall_bouncer_status",
|
|
"firewall_bouncer_config",
|
|
"nftables_stats",
|
|
"check_wizard_needed",
|
|
"wizard_state",
|
|
"console_status",
|
|
"acquisition_config",
|
|
"acquisition_metrics",
|
|
"health_check",
|
|
"capi_metrics",
|
|
"hub_available",
|
|
"get_settings"
|
|
],
|
|
"uci": [ "get", "state", "configs" ],
|
|
"file": [ "read", "stat", "exec" ]
|
|
},
|
|
"uci": [ "crowdsec", "crowdsec-dashboard", "crowdsec_abuseipdb" ]
|
|
},
|
|
"write": {
|
|
"ubus": {
|
|
"luci.crowdsec-abuseipdb": [
|
|
"report",
|
|
"set_enabled",
|
|
"set_api_key",
|
|
"save_config"
|
|
],
|
|
"luci.crowdsec-dashboard": [
|
|
"ban",
|
|
"unban",
|
|
"collect_debug",
|
|
"configure_metrics",
|
|
"install_collection",
|
|
"remove_collection",
|
|
"update_hub",
|
|
"register_bouncer",
|
|
"delete_bouncer",
|
|
"control_firewall_bouncer",
|
|
"update_firewall_bouncer_config",
|
|
"repair_lapi",
|
|
"console_enroll",
|
|
"console_disable",
|
|
"service_control",
|
|
"configure_acquisition",
|
|
"reset_wizard",
|
|
"install_hub_item",
|
|
"remove_hub_item",
|
|
"save_settings"
|
|
],
|
|
"uci": [ "set", "add", "delete", "rename", "order", "commit", "apply", "confirm", "rollback" ],
|
|
"file": [ "exec" ]
|
|
},
|
|
"uci": [ "crowdsec", "crowdsec-dashboard", "crowdsec_abuseipdb" ]
|
|
}
|
|
}
|
|
}
|