Skip to content

fix: remove nginx access logs#1780

Open
Tbaile wants to merge 4 commits into
mainfrom
banip-remove-nginx-audit
Open

fix: remove nginx access logs#1780
Tbaile wants to merge 4 commits into
mainfrom
banip-remove-nginx-audit

Conversation

@Tbaile

@Tbaile Tbaile commented Jul 9, 2026

Copy link
Copy Markdown
Collaborator
  • fix(threatshield): revert banIP dedicated log split
  • fix(nginx): disable access log entirely
  • fix: restarting rsyslog after install

Tbaile added 3 commits July 9, 2026 12:20
banIP scanned a curated /var/log/banip.log fed only by dropbear,
openvpn and nethsecurity-api. Go back to scanning the full system
log via logread so no ban-worthy events are missed. A boot-time
cleanup unsets ban_logreadfile, drops the rsyslog include, and
removes the leftover dedicated log file on already-upgraded boxes.
nginx access logs were forwarded to syslog and picked up by the
*.* VictoriaLogs catch-all with no way to filter them out. Disable
access_log at the source instead of rerouting it, for both the
default _lan instance and the ns-ui extra instance. A boot-time
cleanup flips already-provisioned boxes that still have the old
syslog target set.

@gsanchietti gsanchietti left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems good to me, but let's wait Filippo review.

Comment thread packages/ns-threat_shield/Makefile Outdated
@Tbaile Tbaile requested a review from filippocarletti July 9, 2026 12:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants