Just wanted to report that, I installed Wazuh/ossec agent on my cloudron server to grab logs and send to a security onion. I've been running it alongside the Cloudron now for a while. I've been getting alerts, logs sent back etc. Everything is going well. So if you want a HIDS on your Cloudron server, Wazuh works.
Best posts made by Mastadamus
-
Cloudron works great with Wazuh/Ossec agent
-
Love this app
I Love this app. I'm using my cloudron adguard instance as the backup DNS to my Adguard instance i have installed in docker on my router. That way all dns requests are filtered through my firewall allow/block rules list first prior to hitting the dns filters. This ensures my NGW block lists that operation at dns level can take effect. thanks for implementing this. Its working great.
-
RE: TLS 1.0 vulnerability over 993 IMAPS
@d19dotca I used the qualys vulnerability scanner community edition. You need to create an qualys account and use the actual vulnerability scanner. Also if you are running a firewall, you may have to unblock the qualys IP if it auto blocks it when it attempts various "scans' like checking for heartbleed etc. you can sign up for here https://www.qualys.com/community-edition/
-
RE: Chat application thoughts?
I've tried element/matrix and now rocket.chat. I find rocket.chat to be lightyears easier on administration/moderation then matrix. Admin rocket.chat is borderline enjoyable. Admin matrix was not. Additionally, the users i've talked to about ease of use (caveat only about 10) all preferred rocket hands down to element. Lastly, Rocket has the dankest GIFS.
-
TLS 1.0 vulnerability over 993 IMAPS
I recently ran some vulnerability tests via qualys against my cloudron setup and im showing a vulnerability with the 993 using tls 1.0. I thought 1.0 was disabled by cloudron? Is this a false alarm? IF not, is there an easy way to force tls 1.2 only?
-
RE: TLS 1.0 vulnerability over 993 IMAPS
@girish sir
BTW, I apologize for not using your dedicated vulnerability reporting method.
- I just read up on it
- I really thought it was due to a settings misconfiguration part on my end and a false alarm as well. I was initially just looking for Guidance on fixing what I set up wrong. In the future if it's vulnerability concerned, I'll use your reporting mechanisms.
-
RE: Seeking recommendations based on experience for Sendmail Relays
I've tried sendgrid and mailgun. 1. They were both similiar in ease to configure. 2. Mailgun seems like a better deal for those not using a massive amount of emails a month.
-
Any forecast on when dolibarr will be up and stable?
I may need to test out Dolibarr for possible use by an organization i'm volunteering with. Any idea when we can expect a stable build? just wondering. Thank you.
-
RE: Cloudron works great with Wazuh/Ossec agent
@mastadamus IF you want it to grab cloudron specific logs, you gotta edit the ossec.conf file to give it a location of the logs as well.
-
RE: Any forecast on when dolibarr will be up and stable?
@nebulon Thank you. You guys are doing a great time. Im honestly impressed with the level of work/support yall put out for your customers.
-
RE: Cloudron works great with Wazuh/Ossec agent
@girish yep and then you got to point it out your wazuh server using the ossec.conf file