Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI CSIRT:Monitoring"

From EGIWiki
Jump to navigation Jump to search
 
(11 intermediate revisions by 3 users not shown)
Line 11: Line 11:
= Pakiti =
= Pakiti =


[http://pakiti.sf.net/ Pakiti] is a client-server tool to collect and evaluate data about packages installed on Linux machines, primarily meant to identify vulnerable SW that have not been properly updated. The EGI CSIRT operates the [[EGI_CSIRT:Monitoring:EGIPakiti|EGI Pakiti instance]] that is used to monitor the state of the EGI sites.
[https://github.com/CESNET/pakiti2 Pakiti] is a client-server tool to collect and evaluate data about packages installed on Linux machines, primarily meant to identify vulnerable SW that have not been properly updated. The EGI CSIRT operates the [[EGI_CSIRT:Monitoring:EGIPakiti|EGI Pakiti instance]] that is used to monitor the state of the EGI sites.


A site can also choose to install its own Pakiti instance. There is a documentation guide available from the [http://pakiti.sf.net/#Documentation Pakiti homepage] that describes the steps needed to deploy the server and clients. The Nagios probes used to launch the Pakiti client in the EGI are also [https://trac.hellasgrid.gr/trac/code.grid.auth.gr/wiki/grid-monitoring-probes-org.sam.sec available]. Note, the Pakiti distribution available at the moment doesn't support all the features supported by the EGI instance of Pakiti, nevertheless it is fully working and can be used to monitor the site status.
Currently we are working on the new version of the Pakiti v3, more information for developers is available [[EGI_CSIRT:Monitoring:Pakitiv3|here]].
 
Currently we are working on the new version of the Pakiti v3, more information is available [[EGI_CSIRT:Monitoring:Pakitiv3|here]].


== Pakiti client ==
== Pakiti client ==


If your receive pakiti-client from the EGI CSIRT team in order to run it manually on your site, follow these steps:
=== How to use the service? ===


# Unpack received pakiti-client.tar.gz to some directory.
Pakiti is used by EGI CSIRT and can be used by any EGI site for additional checks. The documentation for client installation [[EGI_CSIRT:Pakiti_client|is available]].
# Run ./Pakiti script, the script will send the report for the host where the script was executed.  
# Look at the https://pakiti.egi.eu, if the host is there.
# Deploy the Pakiti client on all nodes which should be monitored (deploy all the content of the pakiti-client.tar.gz).

Latest revision as of 08:20, 20 July 2015


| Mission | Members | Contacts
| Incident handling | Alerts | Monitoring | Security challenges | Procedures | Dissemination



About EGI-CSIRT Security monitoring activities

See the description of the Security Monitoring Group for general description of the activity.

Security monitoring with Nagios

Pakiti

Pakiti is a client-server tool to collect and evaluate data about packages installed on Linux machines, primarily meant to identify vulnerable SW that have not been properly updated. The EGI CSIRT operates the EGI Pakiti instance that is used to monitor the state of the EGI sites.

Currently we are working on the new version of the Pakiti v3, more information for developers is available here.

Pakiti client

How to use the service?

Pakiti is used by EGI CSIRT and can be used by any EGI site for additional checks. The documentation for client installation is available.