Re: server monitoring
While I agree with many of the respondents that Nagios will do most of
what you want through the plugins (though I'm relatively new to
Nagios), I just wanted to toss a couple of others out there.
* OSSEC (http://ossec.net) is a host-based intrusion detection system
(HIDS). It is primarily email-based, but also has a bolt-on web
interface. From the website:
"OSSEC is an Open Source Host-based Intrusion Detection System. It
performs log analysis, file integrity checking, policy monitoring,
rootkit detection, real-time alerting and active response.
It runs on most operating systems, including Linux, MacOS, Solaris,
HP-UX, AIX and Windows."
The other one, Munin (http://munin-monitoring.org/), is a networked
resource monitoring tool that can help analyze resource trends and
"what just happened to kill our performance?" problems. It is designed
to be very plug and play. A default installation provides a lot of
graphs with almost no work.
--b
On Mon, May 14, 2012 at 9:10 AM, Stanisław Findeisen
<stf.list.debian.user@eisenbits.com> wrote:
> Hi
>
> What tools would you recommend for monitoring the following on a server? :
>
> * kernel + process images in memory
> * shape of the process tree
> * binary integrity of files + permissions
> * network connections
> * users, groups
> * user sessions
> * log files
> * ...
>
> I think this calls for a customizable solution with plugins (or so). Is
> there any such thing in Debian? How reliable is it?
>
> How about reporting? Logging would be good but logging to a local file
> is problematic as that could be compromised on a server hack...
>
> --
> http://people.eisenbits.com/~stf/
> http://www.eisenbits.com/
>
> OpenPGP: E3D9 C030 88F5 D254 434C 6683 17DD 22A0 8A3B 5CC0
>
>
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: [🔎] 4FB1045F.1010308@eisenbits.com">http://lists.debian.org/[🔎] 4FB1045F.1010308@eisenbits.com
>
Reply to: