-
Install pip install mysql-connector-python pip install Flask-sqlalchemy
-
Apache webserver
-
Mysql database with logs
-
Syslog standard logformat in syslog
-
Syco to generate host list for webpage
- Copy the www folder containing all www files to /var/www/html/
- Copy the apache vhost.conf file in the etc folder to /etc/httpd/cond.d
- Make sure that the mod_cgi.se is enabled in you apache config /etc/httpd/httpd.conf
- Setup user i htaccess file or use ldap read.
- Setup mysql settings in the mysql.py file (User must have read to Syslog database)
- Run sql file for mysql config
GRANT SELECT,INSERT,UPDATE on Syslog.Exclude TO 'rsyslogd'@'localhost';
GRANT SELECT,INSERT,UPDATE on Syslog.alert TO 'rsyslogd'@'localhost';
GRANT SELECT,INSERT,UPDATE on Syslog.signed TO 'rsyslogd'@'localhost';
GRANT SELECT on Syslog.* TO 'rsyslogd'@'localhost';
-
Extra: Setup logclean script
-
Extra: Use nagios to montor logs
-
Setup in webpage what to exclude and alert in.
-
"OK" settings will generate alerts if log entory is not find on the host chosen.
-
Cleaning out none wanted log entries define with add this script to crontab to run every hour. mysql_clean_exclude.py
-
Nagios alert are triggered with nrpe to run on the script auto_alert.py
- Use ldap instead of htacess file to host files.
- Uncomment the ldap section in the vhost.conf file
- Show daily logs
- Signing of logs
- Hiding use logresults
- Removing non use log results
- Trigger nagios alert on logs fins i db
- Trigger nagios alert on log NOT find in db on host