this post was submitted on 30 Nov 2023
3 points (100.0% liked)

Self-Hosted Main

21 readers
1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

founded 1 year ago
MODERATORS
 

I don’t want to hear about your Plex, your NPM, your notes application or science forbid, your budgeting application. I want to hear the most exotic thing you setup to selfhost, that probably only you and a hand full of people around the world actually use or even need. A problem that you solved in a way, that makes people go WTF. Go!

I’ll start: I live in the mountains, and there is snow, lots of snow. I often tell people “We had 3m of snow last year”, but is that really true? So, I thought to myself: Can you measure snowfall? It seems you can, so I setup a USH-9 ultra sound measuring device, connected it via IC2 to my Home Assistant and now I can tell people with confidence, that we had a total of 3.45m of snowfall last season, with max snow height of 60cm on January 5th.

Future project: I have chickens. They lay eggs. I have cameras. I want to know which hen lays how many eggs. Solution? AI image recognition of the hens (who is who) and if they have laid an egg. Any inputs welcome.

you are viewing a single comment's thread
view the rest of the comments
[–] mlazzarotto@alien.top 1 points 1 year ago (1 children)

Is Elastic Security free? I have Graylog but the security functionality is not included in the free edition.
Also, if you don’t mind, what triggers did you implement?

[–] maof97@alien.top 1 points 1 year ago

It’s completely free even the EDR and Threat Intel functionality. It blows my mind too. The only things that are not free are things like machine learning detection, ransomware and cloud (k8) protection and other enterprise stuff like SSO. Besides the prebuilt elastic rules (https://github.com/elastic/detection-rules) I implemented about 50 of custom rules for stuff like too many failed logins, unusual traffic flow (you can also send flows from your FW to Elastic), user account creation, network reconnaissance, unusual geo-ip location etc.

The stack is based on the „pfELK“ docker compose file (meaning it integrates automatically with Pfsense/OPNsense logs) that I further modified to automatically include the fleet server and threat intel agent and stuff: https://github.com/maof97/pfelk-docker