2aa55e9444
This ensures keeping all dependencies in sync, and simplifies packaging under freebsd/gentoo/etc because there is a single vendor directory.
46 lines
1.7 KiB
YAML
46 lines
1.7 KiB
YAML
type: email # Don't change
|
|
name: email_default # Must match the registered plugin in the profile
|
|
|
|
# One of "trace", "debug", "info", "warn", "error", "off"
|
|
log_level: info
|
|
|
|
# group_wait: # Time to wait collecting alerts before relaying a message to this plugin, eg "30s"
|
|
# group_threshold: # Amount of alerts that triggers a message before <group_wait> has expired, eg "10"
|
|
# max_retry: # Number of attempts to relay messages to plugins in case of error
|
|
timeout: 20s # Time to wait for response from the plugin before considering the attempt a failure, eg "10s"
|
|
|
|
#-------------------------
|
|
# plugin-specific options
|
|
|
|
# The following template receives a list of models.Alert objects
|
|
# The output goes in the email message body
|
|
format: |
|
|
{{range . -}}
|
|
{{$alert := . -}}
|
|
{{range .Decisions -}}
|
|
<html><body><p><a href=https://www.whois.com/whois/{{.Value}}>{{.Value}}</a> will get <b>{{.Type}}</b> for next <b>{{.Duration}}</b> for triggering <b>{{.Scenario}}</b> on machine <b>{{$alert.MachineID}}</b>.</p> <p><a href=https://app.crowdsec.net/cti/{{.Value}}>CrowdSec CTI</a></p></body></html>
|
|
{{end -}}
|
|
{{end -}}
|
|
|
|
smtp_host: # example: smtp.gmail.com
|
|
smtp_username: # Replace with your actual username
|
|
smtp_password: # Replace with your actual password
|
|
smtp_port: # Common values are any of [25, 465, 587, 2525]
|
|
auth_type: # Valid choices are "none", "crammd5", "login", "plain"
|
|
sender_name: "CrowdSec"
|
|
sender_email: # example: foo@gmail.com
|
|
email_subject: "CrowdSec Notification"
|
|
receiver_emails:
|
|
# - email1@gmail.com
|
|
# - email2@gmail.com
|
|
|
|
# One of "ssltls", "starttls", "none"
|
|
encryption_type: ssltls
|
|
|
|
---
|
|
|
|
# type: email
|
|
# name: email_second_notification
|
|
# ...
|
|
|