Linux Monitoring Tools for SysAdmins

source : https://blog.serverdensity.com/80-linux-monitoring-tools-know/

Read More

Cacti : Enable cron job for Weathermap

Solutions:

* * * * * cd /var/www/html/plugins/weathermap/; /var/www/html/plugins/weathermap/weathermap --config /var/www/html/plugins/weathermap/configs/network.conf

Source:

http://forums.cacti.net/viewtopic.php?f=16&t=52345

Read More

Error: Could not open command file ‘/var/nagios/rw/nagios.cmd’ for update!

Error:

Error: Could not open command file '/var/nagios/rw/nagios.cmd' for update!

The permissions on the external command file and/or directory may be incorrect. Read the FAQs on how to setup proper permissions.

An error occurred while attempting to commit your command for processing.
Solutions:

#chmod 777 /var/nagios/rw/nagios.cmd

 

Read More

Error while Compiling nagios-plugins-1.4.16 in Centos 6.4

Error

check_http.c:312:9: error: ‘ssl_version’ undeclared (first use in this function)
....
make[2]: *** [check_http.o] Error 1
make[2]: Leaving directory `/home/nicadmin/nagios-plugins-1.4.16/plugins'
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory `/home/nicadmin/nagios-plugins-1.4.16'
make: *** [all] Error 2

Solutions:

#yum install openssl-devel

recompile the plugin. -

# ./configure

Read More

How to install and configure SNMP on Ubuntu and Centos

1.Installation

• Ubuntu - root@linux:~# sudo apt-get install snmpd


• Centos - root@linux:~# yum install net-snmp net-snmp-utils

2. Configuration - /etc/snmp/snmpd.conf
Move existing /etc/snmp/snmpd.conf configuration file to /etc/snmp/snmpd.conf.org
mv /etc/snmp/snmpd.conf /etc/snmp/snmpd.conf.org
Create a new /etc/snmp/snmpd.conf file:
rocommunity public
syslocation "PDC, DataCenter"
syscontact abc@com.my

3. Configuration - 
/etc/default/snmpd(ubuntu)
/etc/sysconfig/snmpd(centos)

Make snmpd use the newly created file and make it listen to all interfaces:

Edit /etc/default/snmpd or /etc/sysconfig/snmpd

Change from:
# snmpd options (use syslog, close stdin/out/err).
SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid 127.0.0.1'
To:
# snmpd options (use syslog, close stdin/out/err).
#SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid 127.0.0.1'
SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid -c /etc/snmp/snmpd.conf'
and restart snmpd
/etc/init.d/snmpd restart

4. Test

Do a snmpwalk from another host against your newly configured host.

# snmpwalk -v 1 -c public -O e localhost

source :

• http://www.it-slav.net/blogs/2009/02/05/install-and-configure-snmp-on-ubuntu/


• http://www.it-slav.net/blogs/2008/11/11/install-and-configure-snmp-on-rhel-or-centos/

Read More

100 Best Open Source Security Tools

These tools offer a variety of useful security functions.

1. Untangle: Untangle will provide you with spam, virus, and spyware protection, as well as Web filtering, firewall, and more.


2. Network Security Toolkit: This tool combines a variety of open source apps that will help you stay on top of traffic, intrusions, and more.


3. Bastille Linux: With this tool, you’ll answer questions about your security, and will get a custom lockdown for your machine.


4. OSSIM: OSSIM brings together a number of open source security tools to give you network details and stay on top of intrusions.


5. ProShield: Use Proshield to get a scan of your system for up to date software and malware.


6. Hardened Linux: This Linux distribution will help you improve your security.


7. eBox Platform: Use this network management framework for content filtering, proxy, firewalls, and more.sa


8. Kismet: Kismet offers wireless network detection, intrusion detection, and packet sniffing, all in one.

Monitoring

With these tools, you’ll get constant monitoring of your security.

1. Nessus: Use this free scanner to stay on top of your vulnerabilities.


2. Nagios: This host and network monitoring tool will let administrators handle outages before clients and users are affected.


3. AWStats: Use AWStats to get a look at attacks on your server.


4. Honeytrap: With this tool, you’ll get advanced warning about attacks.


5. The Multi Router Traffic Grapher: Use this tool to monitor your SNMP network devices.


6. Snort: Snort is an incredibly effective intrusion detection system.


7. BASE: This tool works well with Snort to make your intrusion detection data more easy to understand.


8. Internet Secure Access Kit: This suite will help you restrict and monitor access on your network.


9. Afick: Afick will help you stay on top of changes to your system.


10. Network Security Analysis Tool: Use this tool to scan your network for vulnerabilities.


11. Nagios: This program will monitor your enterprise network services, environmental factors, host resources, and point out potential vulnerabilities.


12. JbroFuzz: With this tool, you can test the integrity of your network.


13. Yet Another Security Monitoring Interface: This web based application will help you take a look at the data flow in your router.


14. ettercap: Ettercap will monitor your LAN, staying on top of content, live connections, and other potential attacks.


15. Metasploit: Often used by hackers, you can test your system with this tool.


16. SNARE: Make use of this tool that collects and analyzes your event log data.


17. Nikto: Nikto will scan your web servers for problems and dangerous files.

Email & Spam

Use these tools to keep your email secure.

1. Spam Assassin: This anti-spam tool will help you keep your email neat and clean.


2. Tiger Envelopes: This email encryption tool works with a variety of programs, including Thunderbird and Outlook.


3. Anti-Spam SMTP Proxy Server: Use this application to filter out spam and viruses.


4. Spamato: With this client-side spam filter, you can keep the junk out of your Outlook, Thunderbird, and other popular email clients.


5. phPOP3clean: Use this scanner to look for worms, spam, blacklisted words, as well as blacklisted domains.


6. Thunderbird: This open source email program has a variety of tools for keeping spam and viruses at bay.


7. Mailsaurus: This email client will encrypt all of your data so that no one can read your email.


8. MailCleaner: With this filtering application, you can keep the spam and viruses out.


9. Web Stat: Want to know how much spam you’re blocking? Use this tool that will display your level of blocked spam graphically.

Anti-Virus

With these tools, you can protect your computer and network from viruses.

1. FullControl: This software will stay on top of all the programs running on your computer and verify their integrity.


2. ClamAV: Make use of this excellent antivirus tool to keep your machine free of viruses.


3. ClamWin: If you want to take advantage of ClamAV on your Windows machine, make use of this tool.


4. Moon Secure Antivirus: This antivirus scanner also features a firewall.


5. Winpooch Watchdog: Winpooch will stay on top of spyware, trojans, and viruses.


6. Softlabs AntiVirus: Using this antivirus tool, you can scan your email for phishing and viruses.

Firewall

Use these firewall tools to keep unwanted intruders and items out of your system.

1. SELinux: Using SELinux, you can set mandatory access control features for Linux.


2. m0n0Wall: This tool offers both firewall and VPN.


3. ShellTer: ShellTer offers a firewall with SSH protection.


4. Endian Firewall Community: Use this tool to turn an old PC into an appliance that provides a variety of security functions.


5. FirewallPAPI: This system will stay on top of your network traffic.


6. SmoothWall Express: Use SmoothWall to turn a PC into a firewall appliance for your network.


7. WIPFW: Use this tool to monitor and filter packets entering your network.


8. Fail2Ban: Fail2Ban will stay on top of log files and look for failure prone IPs, which will be blacklisted.


9. Vyatta: Turn to Vyatta to get an enterprise class firewall for free.


10. ISP-FW: With this server side firewall application, you can get packet filtering and monitoring.


11. Firewall Builder: This tool will make it easy to establish rules for your firewall.


12. AppArmor: Create policy-based profiles to control access to applications with AppArmor.


13. Firestarter: Make use of this firewall if you want to get your firewall security up and running in a hurry.


14. Linux Embedded Appliance Firewall: This firewall tool will help you shore up your security.


15. IPCop: With this tool, you can turn any PC into a firewall appliance to get your network secure.

Files & Data

Keep your files, data, and transfers secure with these tools.

1. Darik’s Boot and Nuke: If you want to wipe out a hard drive, just boot up with a disk containing this tool.


2. Packet Generator: Use this tool to optimize the routing schematics for your network.


3. Paros: Paros intercepts data, offering a way to evaluate web application security.


4. Cyberduck: With this tool, you can transfer files to remote computers and networks.


5. WinSCP: Use this SFTP and FTP client for secure file transfes.


6. Eraser: This tool will eliminate files by overwriting them several times, so that they can’t be read using digital forensic tools.

Encryption & Cryptography

Make use of these encryption and cryptography tools to stay secure.

1. KeyCzar: Use this toolkit to make cryptography easier to use in applications.


2. Cameloid: Keep your voice connections safe with this encryption tool.


3. GNU Privacy Guard: This encryption tool uses a number of different encryption algorythms.


4. TrueCrypt: Use TrueCrypt to encrypt a partition or drive, or create a virtual encrypted disk within a file.


5. Cryptonit: Secure your files and address books with this encryption tool.


6. Checkpoint Commander: This tool will both encrypt and completely erase your files.


7. AxCrypt: AxCrypt is a simple encryption tool that will allow you to encrypt files with just a few clicks.


8. Magikfs: You can hide your files using this tool with a steganographic filesystem.


9. FreeOTFE: This tool will create secure virtual drives on your PC.


10. Cryptology: Cryptology offers encyption that integrates into Windows Explorer right-click menus.

Passwords

With these tools, you can keep your passwords handy and secure.

1. KeePass: Use this password safe to keep all of your passwords safe and encrypted.


2. CiphSafe: This tool will encrypt your usernames and passwords for popular Internet websites.


3. Password Safe: Password Safe will help you create strong passwords and can store multiple password databases.


4. Keep It Secret! Keep It Safe!: With this tool, you can store your important usernames and passwords in an encrypted file.

Remote Access

Use these tools for secure remote access.

1. OpenSSH: With this tool, you can safely operate a remote host.


2. Stunnel: Stunnel will encrypt your TCP connections inside SSL connections.


3. OpenVPN: Get safe VPN access using this tool.


4. SSL-Explorer: This web-based VPN server will allow you to use a standard browser.


5. Open SSL: This tool uses Transport Layer Security and Secure Socets Layer protocols to keep you safe.


6. strongSwan: strongSwan offers an IPsec-based VPN tool for Linux.


7. PuTTy: Get remote access with this telnet/SSH client.


8. UltraVNC: Use this tool to get safe and secure remote access.

Networking

These tools will help you operate a more secure network.

1. Nmap: Nmap will help you stay informed of all of the hardware that is connected to your network.


2. Wireshark: Using Wireshark, you can take a look at all of the traffic that passes over your Ethernet network.


3. Bro: Bro offers network intrusion detection that will passively monitor your network traffic for anomalous traffic behavior.


4. Network Simulator and Network Animator: With this tool, you can test your network flow to prevent bottlenecks and promote better routing.


5. OCS Inventory NG: This tool will provide you with a list of hardware and software on your network.


6. Netcat: Netcat is a simple utility that will help you read and write data across UDP or TCP network connections.


7. Angry IP Scanner: This tool will scan IP adresses and ports on your network.


8. Ossec HIDS: With this intrusion detection system, you’ll find out when your network is being attacked.


9. TcpDump: If you’re looking for a light, secure packet sniffer, check out this tool.


10. The Network Visualizer: Get graphic information on your network activity using this tool.

Miscellaneous

Check out these tools for even more open source security applications.

1. Tripwire: Find out when changes are made to your system by using this tool.


2. Firefox: A very popular web browser, Firefox offers a variety of secure options and add ons.


3. The Sleuth Kit: With this kit, you can recover deleted files.


4. JAP: This tool will allow you to browse the Internet anonymously.


5. iSAK: Using this tool, you can filter out specific types of websites.


6. Advisory Check: This tool will read RSS and XML security feeds to monitor the security of the software you’re using.


7. Babel: Babel will let you know about all of the security flaws that you have in your system.

Read More