Nagios Support Forum

We purchased nagios vm and our customer has given us a directive to harden all linux boxes and linux based boxes, including nagios vm.

Does anyone have a hardening guide for it?  Customer did provide us with a CentOS hardening guide to use which looks to just be made of general CentOS hardening tips found on the internet.

Any input or suggestions?
Thank you

Here is the documentation that we have for security, you could also look at using ModSecurity, etc.

http://nagios.sourceforge.net/docs/nagi ... urity.html

http://nagios.sourceforge.net/docs/nagi ... urity.html

Appreciate it thank you!

No problem, can we mark this as resolved and lock the topic?

Hi, I will be going through the links today and tomorrow. Can I keep it open in case I have further questions?

We should be able to lock it as resolved by next Tuesday at the latest, hopefully earlier

Is this okay?

Sure, no problem, we'll leave it open.

Hello - Can I attach or post the hardening guide sent to me and have someone look through it and give me their recommendations? I understand that your recommendations of the hardening guide will not be run through any QA cycle of any sort and it is to our risk to test it and rollback.

That being said, you guys know the internals of nagios and I would love to hear your thoughts on the hardening guide as to what should not be changed, what changes are likely okay because it likely won't affect nagios, etc.

The easiest way was to snapshot the relevant parts as images and paste into word doc to help protect customer identity and also take out a lot of the extra text in there.

Can someone at Nagios provide me some thoughts? Thank you!

The entire doc with snapshots too large, it is in three parts

Thanks!

part 3.
thanks!

Alright, many things are covered in this doc. It looks good on face, but many of these suggestions are environment and configuration dependent.
Has your security or ops teams looked this?
Do you have any questions about specific items from the doc?