From 9c1a40cde0f773f3084882ef1830cc585f555ccf Mon Sep 17 00:00:00 2001
From: Betty <betty.bombers@proyon.me>
Date: Fri, 20 Feb 2026 16:39:48 +0100
Subject: [PATCH] post: commit 3c0dd23 in bojemoi

---
 .../commits/2026-02-20-commit-3c0dd23.md      | 43 +++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 content/posts/commits/2026-02-20-commit-3c0dd23.md

diff --git a/content/posts/commits/2026-02-20-commit-3c0dd23.md b/content/posts/commits/2026-02-20-commit-3c0dd23.md
new file mode 100644
index 0000000..f540c4d
--- /dev/null
+++ b/content/posts/commits/2026-02-20-commit-3c0dd23.md
@@ -0,0 +1,43 @@
+---
+title: "[bojemoi] suricata: rotate eve.json hourly, add eve-cleaner sidecar (24h retention)"
+date: 2026-02-20T16:39:48+01:00
+draft: false
+tags: ["commit", "bojemoi", "main"]
+categories: ["Git Activity"]
+summary: "Commit 3c0dd23 par Betty dans bojemoi"
+author: "Betty"
+---
+
+## Commit `3c0dd23`
+
+| | |
+|---|---|
+| **Repository** | bojemoi |
+| **Branch** | `main` |
+| **Author** | Betty |
+| **Hash** | `3c0dd2318ac8d164cd2c1e6cc35ad16d392bad89` |
+
+
+### Description
+
+- suricata.yaml: filetype regular -> rotating, rotate-interval: 1h
+  Creates eve.<timestamp>.json files hourly instead of one growing file
+- dozor stack: add eve-cleaner service (alpine) that deletes rotated
+  eve.json files older than KEEP_HOURS=24h, runs every hour
+
+Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
+
+### Files Changed
+
+```
+M	stack/48-service-dozor.yml
+M	volumes/suricata/suricata.yaml
+```
+
+### Diff Summary
+
+```
+ stack/48-service-dozor.yml     | 38 ++++++++++++++++++++++++++++++++++++++
+ volumes/suricata/suricata.yaml |  3 ++-
+ 2 files changed, 40 insertions(+), 1 deletion(-)
+```