shpaq/auricom-home-cluster
1
0
Fork 0
mirror of https://github.com/auricom/home-cluster.git synced 2025-09-17 18:24:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

feat: remove falco + flaresolverr

Browse Source
This commit is contained in:
auricom
2021-06-14 22:35:23 +02:00
parent 61add65167
commit fedd86f253
11 changed files with 0 additions and 162 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
cluster/apps/falco-system/falco-exporter/helm-release.yaml
View File

@@ -1,27 +0,0 @@
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
name: falco-exporter
namespace: falco-system
spec:
interval: 5m
chart:
spec:
# renovate: registryUrl=https://falcosecurity.github.io/charts
chart: falco-exporter
version: 0.5.1
sourceRef:
kind: HelmRepository
name: falco-security-charts
namespace: flux-system
interval: 5m
values:
serviceMonitor:
enabled: true
grafanaDashboard:
enabled: true
namespace: falco-system
tolerations:
- effect: NoSchedule
operator: Exists

4
cluster/apps/falco-system/falco-exporter/kustomization.yaml
View File

@@ -1,4 +0,0 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- helm-release.yaml

76
cluster/apps/falco-system/falco/helm-release.yaml
View File

@@ -1,76 +0,0 @@
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
name: falco
namespace: falco-system
spec:
interval: 5m
chart:
spec:
# renovate: registryUrl=https://falcosecurity.github.io/charts
chart: falco
version: 1.13.0
sourceRef:
kind: HelmRepository
name: falco-security-charts
namespace: flux-system
interval: 5m
values:
timezone: "Europe/Paris"
containerd:
enabled: true
socket: /var/run/k3s/containerd/containerd.sock
docker:
enabled: false
ebpf:
enabled: true
settings:
hostNetwork: true
falco:
grpc:
enabled: true
grpcOutput:
enabled: true
tolerations:
- effect: NoSchedule
operator: Exists
# https://securityhub.dev/
customRules:
rules-admin-activities.yaml: |-
- rule: Detect su or sudo
desc: detect sudo activities
condition:
spawned_process and proc.name in (sudo, su)
output: >
Detected sudo or su privilege escalation activity (user=%user.name command=%proc.cmdline)
priority: WARNING
tags: [process]
- rule: Package Management Launched
desc: detect package management launched
condition: >
spawned_process and user.name != "_apt" and package_mgmt_procs and not package_mgmt_ancestor_procs
output: >
Package management process launched in container (user=%user.name
command=%proc.cmdline container_id=%container.id container_name=%container.name image=%container.image.repository:%container.image.tag)
priority: ERROR
tags: [process]
rules-ssh-connections.yaml: |-
- rule: Inbound SSH Connection
desc: Detect Inbound SSH Connection
condition: >
((evt.type in (accept,listen) and evt.dir=<) or
(evt.type in (recvfrom,recvmsg))) and ssh_port
output: >
Inbound SSH connection (user=%user.name client_ip=%fd.cip client_port=%fd.cport server_ip=%fd.sip)
priority: WARNING
tags: [network]
- rule: Outbound SSH Connection
desc: Detect Outbound SSH Connection
condition: >
((evt.type = connect and evt.dir=<) or
(evt.type in (sendto,sendmsg))) and ssh_port
output: >
Outbound SSH connection (user=%user.name server_ip=%fd.sip server_port=%fd.sport client_ip=%fd.cip)
priority: WARNING
tags: [network]

4
cluster/apps/falco-system/falco/kustomization.yaml
View File

@@ -1,4 +0,0 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- helm-release.yaml

5
cluster/apps/falco-system/kustomization.yaml
View File

@@ -1,5 +0,0 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- falco
- falco-exporter

1
cluster/apps/kustomization.yaml
View File

@@ -3,7 +3,6 @@ kind: Kustomization
resources: resources:
- data - data
- development - development
- falco-system
- home - home
- kasten-io - kasten-io
- media - media

29
cluster/apps/media/flaresolverr/helm-release.yaml
View File

@@ -1,29 +0,0 @@
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
name: flaresolverr
namespace: media
spec:
interval: 5m
chart:
spec:
# renovate: registryUrl=https://k8s-at-home.com/charts/
chart: flaresolverr
version: 3.4.0
sourceRef:
kind: HelmRepository
name: k8s-at-home-charts
namespace: flux-system
interval: 5m
values:
image:
repository: flaresolverr/flaresolverr
tag: v1.2.8
env:
TZ: "Europe/Paris"
LOG_LEVEL: "info"
resources:
requests:
memory: 100Mi
cpu: 100m

4
cluster/apps/media/flaresolverr/kustomization.yaml
View File

@@ -1,4 +0,0 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- helm-release.yaml

1
cluster/apps/media/kustomization.yaml
View File

@@ -2,7 +2,6 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- bazarr - bazarr
- flaresolverr
- flood - flood
- jackett - jackett
- jellyfin - jellyfin

10
cluster/base-custom/charts/falco-security-charts.yaml
View File

@@ -1,10 +0,0 @@
---
apiVersion: source.toolkit.fluxcd.io/v1beta1
kind: HelmRepository
metadata:
name: falco-security-charts
namespace: flux-system
spec:
interval: 10m
url: https://falcosecurity.github.io/charts
timeout: 3m

1
cluster/base-custom/charts/kustomization.yaml
View File

@@ -7,7 +7,6 @@ resources:
- cert-manager-webhook-ovh.yaml - cert-manager-webhook-ovh.yaml
- coredns-charts.yaml - coredns-charts.yaml
- drone-charts.yaml - drone-charts.yaml
- falco-security-charts.yaml
- gitea-charts.yaml - gitea-charts.yaml
- grafana-loki-charts.yaml - grafana-loki-charts.yaml
- influxdata-charts.yaml - influxdata-charts.yaml