CrowdSec Installed but Showing No Decisions? Here's Why That's Normal

CrowdSec Installed but Showing No Decisions? Here's Why That's Normal

CrowdSec Installed but Showing No Decisions? Here's Why That's Normal

When I first fired up CrowdSec, I thought to myself, "Amazing! Job's done! No script kiddies or scanners are gettin' in here now".... I spent an hour last week staring at an empty log file, convinced I had broken my server somehow while working on something else!

Like me, if you installed CrowdSec, and ran:

cscli decisions list …and got: No active decisions

Naturally, your first thought is: Did CrowdSec fail? In most cases, no. This usually means CrowdSec is working exactly as intended!

>📡 If you haven’t installed CrowdSec yet, start with my complete CrowdSec deployment guide inside the Digital Castle stack.

As you probably know, unlike Fail2Ban, CrowdSec blocks many attackers preemptively using community intelligence, so your local decision list may stay empty even while your server is actively protected.

In this guide, you'll learn how to verify CrowdSec is functioning correctly by checking:

  • downloaded community decisions
  • active metrics
  • blocked attack attempts
  • alert history
  • whitelist configuration

All via CLI and also with CrowdSec WebGui!

Head on over to my CrowdSec deep-dive walk-through to begin your verification.

Disclaimer: Written, screen-shotted and tested/used by me. There are NO ads of any kind on this page nor affiliate links. Just sharing info & love for CrowdSec!

Edit: Title got mangled by Reddit some how upon posting? I slapped it above.

corelab.tech
u/corelabjoe — 6 days ago
▲ 5 r/Ghost

Ghost CMS + Home Assistant Native Integration Guide

Hello fellow Ghost fam! I thought it would be great to share a wonderful crossover of my favourite one and only blogging & newsletter platform, and Home Assistant one of my nerdy much-loved projects!

If you run your own Ghost publication and already have Home Assistant somewhere in your rack, VM cluster, or homelab, there is now a surprisingly good (and fun) reason to connect the two!

Ghost has officially released a native integration for Home Assistant, meaning your publication metrics can now appear directly inside your dashboards, automations, wall panels, mobile notifications, and even physical hardware projects! I don't track Ghost's or Home Assistant's roadmap but I thought this was a wonderfully surprising partnership.

>This is not a community hack or a fragile webhook chain. It is now built directly into Home Assistant.

For self-hosters, this is one of those oddly perfect overlaps: your content platform can finally become part of the rest of your infrastructure.If you run your own Ghost publication and already have Home Assistant somewhere in your rack, VM cluster, or homelab, there is now a surprisingly good (and fun) reason to connect the two!

Ghost has officially released a native integration for Home Assistant, meaning your publication metrics can now appear directly inside your dashboards, automations, wall panels, mobile notifications, and even physical hardware projects! I don't track Ghost's or Home Assistant's roadmap but I thought this was a wonderfully surprising partnership.This is not a community hack or a fragile webhook chain. It is now built directly into Home Assistant.

For self-hosters, this is one of those oddly perfect overlaps: your content platform can finally become part of the rest of your infrastructure!

Jump on over to my complete Ghost/Home Assistant walk-through & setup guide for all the details!

corelab.tech
u/corelabjoe — 6 days ago

Prime Day 2026 is here - This is my battle tested equipment!

Don't waste hours scrolling through consumer trash. I dug through the active Prime Day catalog to pull out the hardware genuinely worth your click - most of which is currently running inside my own infrastructure.

This post is for the people who have a rack in a closet, a NAS that runs 24/7, and a rough draft of a network diagram they've been meaning to clean up or better yet, have a missing piece they need to do the build!

If that's you, I dug through the actual Prime Day promo catalog so you don't have to - here's what's genuinely worth looking at and most of it is what I have used.

https://corelab.tech/prime-day-2026-homelab-deals/

u/corelabjoe — 13 days ago
▲ 196 r/corelabtech+1 crossposts

Canada Is Quietly Dismantling Digital Privacy - And You're Probably Not Paying Attention

A Quiet Shift in Canadian Digital Privacy

If you've been following the legislative fire-hose coming out of Ottawa in 2025 and 2026, you might have caught headlines about hate crimes legislation or online safety for kids and moved on. Reasonable - these things sound good on their face. By and large I think the majority of people agree that the internet and mostly, social media has gotten out of hand, and we want children protected, and hate crimes and infringement on free speech, stifled and prosecuted.

>But buried inside three concurrent federal bills is a surveillance architecture that, taken together, represents the most significant erosion of Canadian digital privacy in a generation.

This isn't tinfoil-hat territory. These new laws have drawn such powerful negative attention that multiple companies have threatened to leave Canada entirely:

  • Signal has threatened to leave Canada.
  • Windscribe - a Toronto-headquartered & Canadian VPN - has said it will relocate its headquarters out of Canada.
  • NordVPN is considering the same.
  • Apple, Meta, and even the Canadian Chamber of Commerce have all raised the alarm.
  • Even chairs of the U.S. House Judiciary and Foreign Affairs Committees have written to Ottawa warning that one of these bills threatens American national security.

Let's break down what's actually in these bills, what the realistic worst-case scenarios look like, and - critically - what you can do about it right now, armed with some knowledge and new skills.

>Regardless of where you stand politically, these developments deserve attention because they affect every Canadian who uses the internet.

The Bills: What They Say vs. What They Mean

Bill C-22 - The Lawful Access Act (March 2026)

This is the big one. Introduced by Public Safety Minister Gary Anandasangaree in March 2026, Bill C-22 is the standalone successor to the sweeping surveillance provisions that were buried inside Bill C-2 (the Strong Borders Act) in June 2025. Those warrantless demand powers drew such universal backlash - from civil liberties groups, legal scholars, the opposition parties, and the tech industry - that the government was forced to strip them out and return with a dedicated bill.

The federal government's stated position is that law enforcement and intelligence agencies are increasingly unable to access information they are already legally authorized to obtain because modern technologies, encrypted communications, and cloud services have outpaced existing laws.

According to Public Safety Canada, the legislation is intended to modernize investigative capabilities while preserving Charter protections and judicial authorization requirements. Critics argue that the bill could establish the technical framework for broader surveillance capabilities in the future.

Privacy Commissioner submissions, legal experts, and technology companies have raised concerns regarding:

  • Expanded access to subscriber information.
  • New obligations imposed on electronic service providers.
  • Data retention requirements.
  • Confidential ministerial orders.
  • Reduced transparency regarding government access requests.
  • Potential pressure on encrypted services.

>
Importantly, the government maintains that the legislation does not authorize mass surveillance and does not explicitly require encryption backdoors.

I personally think it's a VERY slippery slope. Once the technical caveats are met and a system is in place, it's very easy to want to use and abuse it. Anyone remember what Snowden leaked about the USA?

Hit the link for the complete overview of how these new laws intersect, and what you can do to maintain your own digital privacy!

https://corelab.tech/canada-privacy-laws-bills-c22-c34-c9/

u/corelabjoe — 13 days ago

🛡️ Auditing the Castle: How to Scan and Pen-Test Your Homelab (2026 Guide)

So let's say you worked hard setting up your environment, you are happy you finally have things humming along... You locked it down a reasonable amount. You’ve deployed the SWAG reverse proxy. You've even got CrowdSec watching the perimeter. But in the world of technical network defense, there is one golden rule: If you aren't actively scanning your own network, someone else is.

>A truly hardened homelab isn't defined by what you think you secured - it’s defined by what an aggressive, automated subnet scan actually uncovers.

Covering - Perimeter / WAN scanning with Qualys, ShieldsUP, Shodan, and internal scanning via vulnerability scanners & docker scans!

To see how to see what the bots & script kiddies see, easily, hit the link and view the complete guide.

corelab.tech
u/corelabjoe — 20 days ago

🎮 Gaming on CachyOS: Why I Ditched Legacy Distros for Bleeding-Edge FPS (2026)

Hello Reddit friends, here's a fresh new post to Core Labs about my latest obsession - CachyOS.

TL;DR = CachyOS is ridiculously easy to install & run, comes with GPU drivers pre-installed and can "game" immediately, plus Hydra launcher!

Building a high-performance Linux gaming machine used to be about finding the most stable "beginner-friendly" base and tweaking it until it stopped stuttering. For a long time, distros like Pop!_OS held that crown... Now it's all about Cachy, and this is your CachyOs Gaming Guide!

According to recent Steam hardware data, CachyOS (shown as Arch Linux in the Steam report) has exploded to become the #1 desktop Linux distribution for gamers on Steam, capturing over 21% of the market Linux OS on Steam. Why? Because it doesn't just bundle gaming apps - it rebuilds the entire operating system backend specifically to maximize your hardware's frame times.

Why CachyOS? (The Optimization is Real)

Most standard Linux distributions compile their software packages for generic, lowest-common-denominator x86-64 processors to ensure maximum compatibility with old computers. CachyOS does the exact opposite.

They maintain separate repositories compiled specifically for modern CPU instructions (x86-64-v3, x86-64-v4, and Zen4+), utilizing advanced compiler features like LTO (Link-Time Optimization) and PGO (Profile-Guided Optimization). Combined with an aggressively tuned kernel scheduler (like BORE or EEVDF), the operating system significantly reduces micro-stuttering and input latency. It kind of shocked me when I first booted in, I did NOT such a drastic performance increase. I was coming from a Ryzen 5800X CPU and honestly thought there would not be much of a difference but between the new CPU (Ryzen 9800X3D), DDR5 RAM and Cachy, my socks were blown off...

When you pair native Wayland rendering on KDE Plasma with CachyOS's custom-tailored packages, your desktop doesn't just feel snappy - your 1% low frame rates in heavy titles like Cyberpunk 2077 or Helldivers 2 get a measurable, real-world uplift.

>Even in War Thunder, I was seeing better performance.

Hit the complete link to find out more on why I am head over heels for Cachy, and how to setup the Hydra Gaming Launcher! IMO - the best unified gaming archive system on Linux, over Lutris and Heroic etc...

u/corelabjoe — 27 days ago
▲ 338 r/RealDebrid+1 crossposts

How to Mitigate the RD Filters and make use of your subscription still.

This is for those who don't know how to 'fix' or 'filter' their RD searches yet, to still make use of the RD service we've grown to know and love!

After this - RD is still 100% usable for me! Maybe everything is NOT exactly the same quality I want any longer, and sometimes I've had to set quality profile to 'any', but it's still finding playable/workable files about 90-100% of the time!

Sonarr/Radarr/Jellyfin/Plex Users

So if your Sonarr/Radarr/Decypharr setup suddenly started throwing tons ofinfringing_file errors through Real-Debrid recently, you're probably hitting the new automated filename filtering they rolled out in May 2026.

A huge chunk of modern releases are now getting blocked automatically based on release tags / scene markers in the filename itself.

Common blocked tags seem to include things like:

  • WEB-DL
  • WEBRip
  • AMZN
  • DSNP
  • YTS
  • TGX
  • RARBG
  • EZTV

This completely wrecked my queues over the last week and about 90% of my cached RD library ended up flagged/broken.

The cleanest fix I've found so far is filtering these releases BEFORE they hit Decypharr / your downloader.

Sonarr/Radarr Fix

Create a new Custom Format:

Settings → Custom Formats → Add New

Then use a Release Title regex like this:

(?i)\b(WEB-DL|WEBRip|BDRip|HDRip|DVDRip|HDTV|AMZN|NF|DSNP|CR|YTS|TGX|TorrentGalaxy|FGT|LOL|KILLERS|EPSiLON|Erai-raws)\b|rartv|rarbg|eztv

Then:

  • attach it to your Quality Profile
  • assign a huge negative score (-10000 or lower)

This forces Sonarr/Radarr to avoid releases RD is now rejecting.

Stremio Users

Stremio users seem less affected overall, but updating AIOStreams filters or switching to Tam-Taro SEL profiles helps massively.

Other Useful Notes

  • REMUX and BluRay releases still seem mostly OK
  • WEB-based releases are getting hit hardest
  • LitterBox from ElfHosted is useful for scanning/removing dead RD cache entries
  • If your automation depends entirely on RD, now is probably the time to think about fallback Usenet or hybrid setups

I wrote up a much more detailed breakdown with screenshots, queue cleanup tips, and full walkthroughs here if anyone wants it.

Disclaimer for the MODS: There's NO ads, affiliate links or paid signups on that page, 100% info only to help!

u/corelabjoe — 1 month ago

Hello fellow RD lovers,

You may have heard about Decypharr in your travels, however aren't certain exactly what it does?

It's kind of a super tool that acts as Qbittorent for the other aarrss, but searches DEBRID not raw torrent sites! It has a builtin rclone and WebDAV functions, in addition to its newer DFS function, which allows integration with Usenet on top of its builtin Real Debrid functionality!

So you can replace several other tools simply, just running decypharr, and easily and natively integrate them with the aarr stack!

For a complete step by step technical guide, have a read over at the link at Core Lab!

u/corelabjoe — 2 months ago