Nginx bouncer log spam
After upgrading to 1.0.9 I'm getting some very bad log spam with every single request in my error log:
10+ events are logged per second
6 Replies
Important Information
Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command
/resolve or press the green resolve button below.Log Files
If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.
Guide Followed (CrowdSec Official)
If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.
Screenshots
Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.
© Created By WhyAydan for CrowdSec ❤️
Hmmm, let me take a look 👍
GitHub
[log info] Spam everytime coroutine runs · Issue #101 · crowdsecuri...
lua-cs-bouncer/lib/plugins/crowdsec/stream.lua Line 146 in ede69a6 ngx.log(ngx.INFO, "startup: " .. tostring(is_startup)) From a user report this log info call is being spammed every 10 s...
just applied the fix, logs are already looking cleaner
quick question: do you have a special log configuration for nginx ?
IIRC, INFO logs are not shown by default
Yes, CIS NGINX benchmark recommends INFO level logging and libModSecurity3 also requires info level logging to display all of the triggered rules when using anomaly scoring (Otherwise only the anomaly scoring rule is logged).