Negating a test

Tedman Eng teng at dataway.com
Fri Jun 25 20:23:13 CEST 2004

Previous message: Negating a test
Next message: nagios and remote checking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I agree, Nagios is best used to monitor known services.  Using it to find if
any of your servers is running FTP, Quake servers, etc is best done by a
tool made for that purpose.  Nessus, nmap, and Foundstone's SuperScanner are
all good and free tools to find open ports on your servers.  Periodic
vulnerability scans should be part of your (and everyone's) monitoring
regiment.

> -----Original Message-----
> From: C. Bensend [mailto:benny at bennyvision.com]
> Sent: Friday, June 25, 2004 6:03 AM
> To: nagios-users at lists.sourceforge.net
> Subject: Re: [Nagios-users] Negating a test
> 
> 
> 
> > If you're looking to stop wares-guys this approach is 
> doomed to fail,
> > since they don't have to run the ftp-server on the standard ftp port
> > (and hardly ever do, since it'd be too easy to find them).
> 
> The behavior he's asking about is also useful as a "sanity check," to
> make sure a service isn't re-enabled by accident, be it by 
> administrative
> mistake or system upgrades/patches.
> 
> Solaris is notorious for re-enabling services after patches 
> are installed,
> for example.
> 
> Benny
> 
> 
> -- 
> "Oh, the Jedis are going to feel this one!"       -- 
> Professor Farnsworth,
>                                                      "Futurama"
> 
> 
> -------------------------------------------------------
> This SF.Net email sponsored by Black Hat Briefings & Training.
> Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
> digital self defense, top technical experts, no vendor pitches, 
> unmatched networking opportunities. Visit www.blackhat.com
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> ::: Please include Nagios version, plugin version (-v) and OS 
> when reporting any issue. 
> ::: Messages without supporting info will risk being sent to /dev/null
> 


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
digital self defense, top technical experts, no vendor pitches, 
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: Negating a test
Next message: nagios and remote checking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list