monitoring

Bookmarks for 24 Mar 2016 through 25 Mar 2016

These are my links for 24 Mar 2016 through 25 Mar 2016:

  • Coderwall | Dump all variables – For debugging purposes it can be useful to not just dump hostvars but also all other variables and group information. You can do this using a jinja template which you could include in a debug task
  • Using Ansible to create AWS instances | Tivix – Ansible is a great tool for enhancing productivity. With a vast array of modules to choose from, it can save you a lot of time by automating away common tasks. At Tivix we use it for single-command deployment, with the most common destination being Amazon EC2 instances created beforehand. Since Ansible is capable of managing EC2 resources, we can improve this setup by making a playbook to create an instance for us.
  • Home | OpenSCAP portal – The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement and enforcement of security baselines. We maintain great flexibility and interoperability, reducing costs of performing security audits.
    The OpenSCAP project provides a wide variety of hardening guides and configuration baselines developed by the open source community, ensuring that you can choose a security policy which best suits the needs of your organization, regardless of its size.
    SCAP is U.S. standard maintained by National Institute of Standards and Technology (NIST). The OpenSCAP project is a collection of open source tools for implementing and enforcing this standard, and has been awarded the SCAP 1.2 certification by NIST in 2014.
  • Wazuh | Augmenting OSSEC Host IDS – Wazuh contributes to Open Source Security developing and integrating new modules to extend OSSEC capabilities and functionality.

Bookmarks for 16 giu 2015 through 19 giu 2015

These are my links for 16 giu 2015 through 19 giu 2015:

  • 10 Things You Should Know About AWS – High Scalability – – Ahead of the upcoming 2nd annual re:Invent conference, inspired by Simone Brunozzi’s recent presentation at an AWS Meetup in San Francisco, and collected from a few of my recent Fluxcapacitor.com consulting engagements, I’ve compiled a list of 10 useful time and clock-tick saving tips about AWS.
  • IT Landscape for sysadmins
  • MonitoringScape – The past decade has seen a dramatic shift in how we build applications: clouds, containers and micro-services have displaced the old paradigm of static, monolithic infrastructure. The need for operational visibility has grown tenfold. Thankfully, the monitoring landscape has kept up with the times. We now have a choice of over 100 monitoring tools that provide excellent visibility to every nook and cranny of our IT stack. The modern monitoring landscape has something for everyone: on-prem installations, SaaS applications, open-source tools and high-priced enterprise monitoring suites. However, with so many tools to choose from, the monitoring landscape can be difficult to navigate. MonitoringScape is your guide to the new, exciting world of modern monitoring. Keep in mind that this is a community resource, so your comments and suggestions are very welcome.
  • Provision and Bootstrap AWS instances with Chef – This is continuation of the previous post called Provision with Chef – baby steps. Today we going to talk about the process of bootstrapping instances with Chef used by FastCompany
  • Provision machines with AWS – custom bootsrapper – […] Now I will tell a little more about our instance bootstrap process. Basically at the end of the previous post we discussed tree possible options for automated machine startup: Create different AMI for each server role. Install all binaries into one ami an provide a way to load dynamic configs parts through some custom bootstrap script. Use infrastructure automation framework like Chef or Puppet, which could handle installs and configuration for you. […] [ Note: the article is pre chef-provisioning tool ]

Bookmarks for 3 dic 2014 through 7 dic 2014

These are my links for 3 dic 2014 through 7 dic 2014:

  • View net surveillance online cameras – Welcome to Insecam project. The world biggest directory of online surveillance cameras.
  • getsentry/sentry – Sentry is a realtime event logging and aggregation platform. It specializes in monitoring errors and extracting all the information needed to do a proper post-mortem without any of the hassle of the standard user feedback loop.
  • Vim Regular Expressions 101

Bookmarks for 28 nov 2014 through 1 dic 2014

These are my links for 28 nov 2014 through 1 dic 2014:

  • SIAMO GEEK – Sperimentatori, entusiasti della tecnologia | Rigenerare le chiavi ssh – Quanto è vecchia la vostra chiave ssh? Rigenerare le chiavi ssh usate per collegarsi ai server è una rottura di scatole, ma potrebbe essere una rottura di molte unità di grandezza inferiore rispetto allo scoprire che una chiave ssh viene usata da mesi a nostra insaputa. Quanto sono corte/lunghe le chiavi ssh registrate nei file authorized-keys dei vostri server? Per fortuna a questa ultima domanda c’è una risposta veloce sotto forma di un pratico script shell.
  • Downloading Java RPM from wget | Giuseppe Paternò – This is a very basic post, but I consider it for myself rather for public consumption. I needed to download the Java RPM from the Oracle website from command line, as I’m connected to my systems from a low bandwidth site. I needed to find the cookies that Oracle website uses for “accepting” Oracle license to use properly wget from command line.
  • urlwatch – a tool for monitoring webpages for updates (thp.io) – This script is intended to help you watch URLs and get notified (via email or in your terminal) of any changes. The change notification will include the URL that has changed and a unified diff of what has changed. The script supports the use of a filtering hook function to strip trivially-varying elements of a webpage.
  • Gravit – unlock your design potential. – Meet Gravit – the cutting-edge design app that will take your creativity to new heights. Gravit offers the creative possibilities of a full-scale design suite – but in a snug app-sized package. Powerful yet easy-to-handle, Gravit has been custom designed from the ground up with an emphasis on versatility, fluidity and elegance – complex design tasks are made simple through its robust suite of tools and highly responsive smart work environment. Express yourself in a new way with Gravit – the new must-have tool for today’s pioneering design professionals! [ via http://www.lffl.org/2014/11/gravit-il-nuovo-software-di-disegno-vettoriale-open-per-linux-windows-e-mac.html ]

Bookmarks for 5 nov 2014 from 10:48 to 13:51

These are my links for 5 nov 2014 from 10:48 to 13:51:

  • Configuring OpenLDAP pass-through authentication to Active Directory – Alex Tcherniakhovski – Security – Site Home – MSDN Blogs – This particular functionality of OpenLDAP should be of special interest for environments where long term co-existence between OpenLDAP and Active Directory is required. By establishing pass-through authentication the following advantages could be achieved: Great end-user experience. No need to remember multiple passwords Increased security, due to the reduction of the attack surface (one less password store in the environment) Single password policy The rest of the post will expand on the instructions provided by the OpenLDAP 2.4 Administration guide on establishing pass-through authentication from OpenLDAP to Active Directory. Specifically, will will leverage the capability of SASL to use LDAP as an authentication back-end. In our case, Active Directory will play a role of such authentication back-end.
  • Books – UNIX Systems Programming (BSD) – BitsInTheWind.com – ISBN 10: 0-937175-23-4 / ISBN 13: 9780937175231  O'Reilly & Associates January 1989 The following are made available for your personal, non-commercial use only. You may cite this document as a bibliographic reference in any works that you are writing. Any commercial use of this document, including printing and distribution to groups of people (such as a classroom) is prohibited without my prior written permission.
  • osquery – With osquery, you can use SQL to query low-level operating system information. Under the hood, instead of querying static tables, these queries dynamically execute high-performance native code. The results of the SQL query are transparently returned to you quickly and easily.
  • Boxupp – GUI tool to manage Puppet & Vagrant based project environments | Paxcel – Boxupp makes it easy for integrated management of development stacks over Vagrant and Puppet. Initially built over these two softwares, we plan to add support for more providers and provisioners * Integrated management environment for Vagrant and Puppet * Intelligence at its core * Simple Web GUI * Easy provisioning * Inbuilt console and editors * Start right from level zero ! * Share your configurations with team members.

Bookmarks for 31 ott 2014 through 1 nov 2014

These are my links for 31 ott 2014 through 1 nov 2014:

  • check_jvm – Nagios Exchange – JvmInspector is standalone tool + Nagios wrapper plugin (check_jvm) that dumps various properties from locally running JVMs. This information includes: * Heap & non-heap memory * Running threads * Loaded classes * Running java version, paths & arguments * On App servers only: Container server name & total active sessions (tested & supported app servers are tomcat5+ and jboss4+) JvmInspector doesn't need local or remote JMX network socket. It directly attaches to JVM's PerfData, so it MUST be started with the same USERid as the target JVM!
  • Raspberry Pi VPN Gateway – Netflix finally arrived in Germany, but guess what? It's library is heavily limited in comparision to the US one and if you like TV series as much as I do, you don't want to wait until they eventually release it year(s) later for us german users. Maybe you've heard recently of Anonabox — a small device with two ethernet ports that you can plug in front of your router and everything behind the device is routed through Tor (side note: turned out to be a scam and got pulled from Kickstarter in the end). However, it made me come up with an idea: Instead of having a Tor-box, I want a VPN-box that is connected to my PrivateInternetAccess VPN. If I'm in need of a VPN connection I just switch the WiFi network and I'm good to go. This way I can easily watch US content from Netflix as well as unblock location restricted content like YouTube, even with my iPhone or Xbox[…]
  • My Tmux Setup on unwiredcouch.com – I've been using tmux as my main terminal multiplexer for about 3 years now and have refined my configuration over time to fit my daily workflow. Which is usually a mix of writing code, chef recipes, remote login into different servers and various shell tasks. This is a flexible setup that doesn't concentrate too much on doing a specific thing or replacing an IDE inside of tmux.

Bookmarks for 21 ott 2014 through 22 ott 2014

These are my links for 21 ott 2014 through 22 ott 2014:

  • Business Software Reviews, SaaS & Cloud Applications Directory | GetApp – Discover & Compare Business Apps
  • Nagios 4 (core) Check_mk pnp4Nagios Nagvis – About monitoring – Since Nagios 4 version release there was an important addon update pending. Recently, check_mk released its innovation version check_mk-1.2.5i2 including MK Livestatus with compatibility with Nagios Core 4. We need therefore check_mk-1.2.5i2 or higher to run check_mk with Nagios Core 4.
  • RIPS – Static Source Code Analysis For PHP Vulnerabilities – Darknet – The Darkside – […] RIPS is a tool written in PHP to find vulnerabilities using static source code analysis for PHP web applications. By tokenizing and parsing all source code files RIPS is able to transform PHP source code into a program model and to detect sensitive sinks (potentially vulnerable functions) that can be tainted by user input (influenced by a malicious user) during the program flow. Besides the structured output of found vulnerabilities RIPS also offers an integrated code audit framework for further manual analysis.[…] [via http://www.bufferoverflow.it/ ]

Bookmarks for 17 ott 2014 through 20 ott 2014

These are my links for 17 ott 2014 through 20 ott 2014:

  • microHOWTO: Configure Apache to use Kerberos authentication – To configure Apache to use Kerberos authentication Kerberos is an authentication protocol that supports the concept of Single Sign-On (SSO). Having authenticated once at the start of a session, users can access network services throughout a Kerberos realm without authenticating again. For this to work it is necessary to use network protocols that are Kerberos-aware. In the case of HTTP, support for Kerberos is usually provided using the SPNEGO authentication mechanism (Simple and Protected GSS-API Negotiation). This is also known as ‘integrated authentication’ or ‘negotiate authentication’. Apache does not itself support SPNEGO, but support can be added by means of the mod_auth_kerb authentication module.
  • How to create a bootable USB stick on OS X | Ubuntu – […] Note: this procedure requires that you create an .img file from the .iso file you download. It will also change the filesystem that is on the USB stick to make it bootable, so backup all data before continuing […]
  • thomastk/kunjumon – Kunjumon is a framework that can be used to create plugins for Nagios monitoring system, without writing any new code. The plugins thus created are robust, and, can monitor complex scenarios by querying data from multiple databases. While efforts to build such plugins would require considerable scripting work, using Kunjumon framework, a a plugin that pulls input data from databases can be implemented by defining it in XML format, and, there is no need to write any code to support it. The Kunjumon framework has been tested on all the Linux platforms, and against MySQL, Postgres, Oracle and Microsoft SQL Server. However, in general, it would work with any ODBC interface configured on the Nagios host to access a data repository.

Bookmarks for 2 set 2014 through 3 set 2014

These are my links for 2 set 2014 through 3 set 2014:

  • Overview – The Apache James Project delivers a rich set of open source modules and libraries, written in Java, related to Internet mail communication which build into an advanced enterprise mail server.
  • Archiveopteryx – Archiveopteryx stores email in a database and provides access to it through IMAP and more.
  • Fluentd | Open Source Data Collector – Fluentd is an open source data collector for unified logging layer. Fluentd allows you to unify data collection and consumption for a better use and understanding of data.

Bookmarks for 27 ago 2014 from 11:57 to 17:02

These are my links for 27 ago 2014 from 11:57 to 17:02:

  • monitoringsucks/tool-repos – Tracking various tools that fit in the monitoring and metrics space
  • OpenELEC Mediacenter – Home – Open Embedded Linux Entertainment Center (OpenELEC) is a small Linux distribution built from scratch as a platform to turn your computer into an XBMC media center. OpenELEC is designed to make your system boot fast, and the install is so easy that anyone can turn a blank PC into a media machine in less than 15 minutes.
  • Raspbmc – Raspbmc is a minimal Linux distribution based on Debian that brings XBMC to your Raspberry Pi.