post: commit 3c0dd23 in bojemoi

2026-02-20 16:39:48 +01:00
parent d90ff09756
commit 9c1a40cde0
1 changed files with 43 additions and 0 deletions
--- a/content/posts/commits/2026-02-20-commit-3c0dd23.md
+++ b/content/posts/commits/2026-02-20-commit-3c0dd23.md
@@ -0,0 +1,43 @@
+---
+title: "[bojemoi] suricata: rotate eve.json hourly, add eve-cleaner sidecar (24h retention)"
+date: 2026-02-20T16:39:48+01:00
+draft: false
+tags: ["commit", "bojemoi", "main"]
+categories: ["Git Activity"]
+summary: "Commit 3c0dd23 par Betty dans bojemoi"
+author: "Betty"
+---
+
+## Commit `3c0dd23`
+
+| | |
+|---|---|
+| **Repository** | bojemoi |
+| **Branch** | `main` |
+| **Author** | Betty |
+| **Hash** | `3c0dd2318ac8d164cd2c1e6cc35ad16d392bad89` |
+
+
+### Description
+
+- suricata.yaml: filetype regular -> rotating, rotate-interval: 1h
+  Creates eve.<timestamp>.json files hourly instead of one growing file
+- dozor stack: add eve-cleaner service (alpine) that deletes rotated
+  eve.json files older than KEEP_HOURS=24h, runs every hour
+
+Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
+
+### Files Changed
+
+```
+M	stack/48-service-dozor.yml
+M	volumes/suricata/suricata.yaml
+```
+
+### Diff Summary
+
+```
+ stack/48-service-dozor.yml     | 38 ++++++++++++++++++++++++++++++++++++++
+ volumes/suricata/suricata.yaml |  3 ++-
+ 2 files changed, 40 insertions(+), 1 deletion(-)
+```