Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 










Current Newswire:

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Using Wii remote with Android Device- Taking Gaming to the Next Level

Commercial Support now available for the open-source NGINX Web server

Linux Top 5: Linux's New Fellow

RebeccaBlackOS - First Live CD Running Wayland Display Server



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:A Secure Nagios Server
A Secure Nagios Server
Nov 12, 2008, 01 :34 UTC (1 Talkback[s]) (4638 reads)
(Other stories by Bill Keys)

"Don't Run Nagios As Root
There should be an normal user called nagios. If Nagios is running as root then if Nagios gets compromised then the attacker can do anything they want to your system.

Lock Down The Check Result Directory
Make sure that only nagios has read/write access to the check result directory otherwise an attacker can send fake host and service checks. This directory is normal at /usr/local/nagios/var/spool/checkresults

Use Full Paths In Command Definitions
When defining commands, make sure to specify the full path and not the relative one to any scripts or binaries you’re executing.

Secure Remote Agents
Some example are NRPE, NSClient, and SNMP. Below we will look at steps to secure the NRPE remote agent."

Complete Story

Related Stories:
Open Source Systems Management Ramps Up(Nov 05, 2008)
Automated Daily Host UP/Down Report for Management using Nagios and Python.(Oct 21, 2008)
Monitor SLAs With Nagios and Ajax(Aug 21, 2008)
Tip of the Trade: Nagios Plugins(Aug 19, 2008)
Hyperic Integrates Nagios, MySQL into Systems Management Suite(Feb 14, 2008)
Nagios Founder Gives In to Commercial Support(Nov 14, 2007)


Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat  
  Talkback(s) Name  and Date
Nice article ...   good   
John
Nov 14, 2008, 13:23:11  
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP