news
CrowdSec 1.7 Intrusion Detection and Prevention System Released
Quoting: CrowdSec 1.7 Intrusion Detection and Prevention System Released —
The headline feature is a new cscli setup command. Instead of requiring manual tweaks, it now auto-detects more services right out of the box. That includes Linux, BSD, and Windows, though for now, the auto-detection only runs during install time for DEB and RPM packages.
Users can also provide their own detection configs during setup, which is handy for custom log paths or non-standard services. But what’s even better, if you’re running things with Ansible or another config manager, the detection can be skipped altogether.
CrowdSec 1.7 also adds usage metrics for better visibility. Log processors now report how many lines are read and parsed per datasource, along with parser stats like parsed, unparsed, or whitelisted events. These numbers are sent to LAPI and can be viewed with cscli machines inspect. In later versions, the team plans to surface them in the console to help flag misconfigurations.