Jaime Frutos Morales's blog

24/07/2009

Installing Ntop in Ubuntu Server 9.04

Filed under: SysAdmin, Ubuntu — acidborg @ 12:14

Description: “Ntop is a network traffic probe that shows the network usage, similar to what the popular top Unix command does. Ntop is based on libpcap and it has been written in a portable way in order to virtually run on every Unix platform and on Win32 as well.”

To install it, execute:

apt-get install ntop

Before starting it, configure the interface you want to listen to in /var/lib/ntop/init.cfg

After that, execute manually as root:

ntop

and enter the password for the Ntop’s admin user twice.

I recommend to kill the execution of Ntop using Control+C and start it “the right way” using:

/etc/init.d/ntop start

Finally, you can access Ntop’s web UI using its URL: http://localhost:3000

03/07/2009

Introducing Lynis

Filed under: Security, SysAdmin — acidborg @ 11:39

From its web: “Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes”.

Lynis is a very useful tool to find “big” security issues on a computer easily and quickly. Its tests are harmless and they take little time to run. Besides pointing out security issues, it also shows suggestions on how to improve your computer’s security.

It needs no installation. You just need to download the latest version from its web site and uncompress it:

tar xvf lynis-*.tar.gz

To run it, enter the directory where it was extracted and run (as root):

./lynis -c -Q

When the tests are finished, the results are showed divided in warnings and suggestions. This information is a good guide to start hardening your computer. If you want to learn more about the test performed and its results, you can read its report file /var/log/lynis.log .

Although Lynis is a great tool, hardening isn’t over after fixing all its warnings and suggestions. It is just the first step to hardening a computer, so getting good results doesn’t mean that your computer is secure. Remember: security is a process, not a state.

Blog at WordPress.com.