Hi all,
Im have a question about the agentless monitoring by Nagios.
How is it possible to retrieve information like CPU status, diskspace and logged in users without snmp enabled ?
I haven't installed any agent or module and snmp is not active on my servers.
udp 0 0 0.0.0.0:53540 0.0.0.0:* 917/squid
udp 0 0 127.0.0.1:11211 0.0.0.0:* 1463/memcached
udp 0 0 0.0.0.0:3130 0.0.0.0:* 917/squid
udp6 0 0 ::1:53991 ::1:53991 ESTABLISHED 1694/postgres
root@xscan:~# service snmpd status
snmpd: unrecognized service
I'm asking this from a security point of view, if Nagios is able to view this information an attacker would have the same abilities. How is this secured so that this information is not leaked to other instances in the network ?
Thanks in advance.
Niels
Secured information gathering ?
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Secured information gathering ?
With "agentless" monitoring the Nagios server still needs to be able to make a connection to the server somehow...
One way often used is SNMP but you discounted that...
Another way is connections via SSH on a Linux machine or WMI on a windows machine.
These connections while "agentless" still require security credentials, you aren't opening up the machine to free access...
One way often used is SNMP but you discounted that...
Another way is connections via SSH on a Linux machine or WMI on a windows machine.
These connections while "agentless" still require security credentials, you aren't opening up the machine to free access...