Good sarc monitoring tip



Sarc is still in their month of security tips per day and todays is another good one. Todays tip is about monitoring machines, particularly those that “defend” your network. (Mail antivirus scanners/ proxy fitlers/scanners/etc.) The core of the advice is to not just ping – that only tells you if the system exists and is online – it doesn’t tell if things are working. They suggest scripting tests (antivirus scanner can be tested via the EICAR test signature for instance.) They note that doesn’t tell if the av scanner is updated (I prefer a crontab output of the days updates – looks like there were around 9 clamav signature updates yesterday.


I know, some of you are thinking, but I don’t want that much mail everyday. If you’re using a linux based system for monitoring you can script things in a number of ways. You can have the monitoring continually running and not contact you unless there’s a problem. (I have a tendency to use temporary files to hold the status of a service and then compare current results of a check to the last (in the temporary file) if the status has changed it will let me know, if all is the same I won’t be pestered by continual messages.) The only problem with this approach is if you start tuning out the messages because they’re too frequent. (That’s why it’s useful to improve your scripts to only notify you of changes.)

Related Posts

Blog Traffic Exchange Related Posts
  • How to Remove Live Enterprise Suite | Live Enterprise Suite Removal Guide Live Enterprise Suite is yet another rogue security application. This is a successor to the frustrating Internet Antivirus Pro and Ghost Antivirus rogues. Like many of these security rogues they are pushed through malware and aggressive advertising. This may be a website that when visited a screen pops up that......
  • Linspire's Click n run is now free First, Linspire released the freely available "freespire" release of their operating system (based on debian linux). Now, users will no longer have to pay an annual subscription for the click n run service. That's now available for free as well. There is a writeup here. Previously the annual subscription fees......
  • Windows more secure than Linux? For the last week, I've seen various headlines referring to a report from US-CERT that indicated 2005 had 5,198 security flaws reported. Out of those 2,328 were reported for Linux/Unix, 812 for Windows and 2,058 affecting more than one operating system. Now, I'm seeing all sorts of headlines about how......
Blog Traffic Exchange Related Websites
  • Principles of Good SEO for Your Blog Regardless of whether you are writing a blog simply because you enjoy having a lot of people reading your thoughts, or if you are writing a blog because you are looking to generate income, one of the most important things that you need to do is maximize the SEO or......
  • How to Create Alternative Income If you're currently living paycheck to paycheck, or you would just like to have a little more financial security, the key is creating alternative forms of income. While to many people this means getting a second job, there are actually easier ways that you can start bringing in more money......
  • Two Aspects of Social Media Marketing Every Business Needs There are a lot of different types of social media marketing out there. And as I've said before, there is no "one size fits all" social media. Your social media campaign must be planned according to your business, products, services, and your customers or clients. However, there are two kinds......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site