Self-hosted · Automation
CrowdSec / fail2ban + LLM notes
Ops tools for abuse noise; LLM helps draft runbooks from logs (you still apply patches).
Strengths
- Real security controls
- Log-driven
- LLM for runbook drafts
Watch-outs
- LLM must not invent firewall rules blindly
- Ops ownership stays with you